What is CVE-2025-24685?

A high-severity Path Traversal vulnerability has been identified in the Morkva UA Shipping plugin. This vulnerability allows for PHP Local File Inclusion, posing significant risks to confidentiality, integrity, and availability. Immediate attention is required to mitigate potential exploits.

What is the severity of CVE-2025-24685?

CVE-2025-24685 has a severity rating of HIGH with a CVSS base score of 8.1.

CVE-2025-24685 | High Vulnerability in Morkva UA Shipping

This vulnerability allows a Path Traversal: '.../...//' in the Morkva UA Shipping plugin, leading to PHP Local File Inclusion. It affects versions from n/a through 1.0.18 of the Morkva UA Shipping plugin.

The CVSS score for this vulnerability is 8.1, categorized as high severity. This classification indicates that the vulnerability is network-exploitable with a high attack complexity and no privileges or user interaction required. The implications extend to confidentiality, integrity, and availability, making it a critical concern for organizations using this plugin.

Risk to organizations includes unauthorized access to sensitive files, potential data breaches, and disruption of service. Organizations should prioritize patching immediately to prevent exploitation.

Currently, there is no public exploit confirmed, and it has not been included in the Known Exploited Vulnerabilities (KEV) catalog, suggesting that it may be less likely to be actively targeted at this time. However, organizations should remain vigilant.

Vulnerability Details

The vulnerability is categorized under the Common Weakness Enumeration (CWE) as CWE-35, indicating a Path Traversal issue. The vulnerability’s impact encompasses high levels of confidentiality, integrity, and availability, making it crucial for organizations to understand the potential risks involved.

Technical Analysis

The root cause of this vulnerability stems from insufficient validation of user-supplied input, allowing attackers to manipulate file paths and access sensitive files on the server. The attack vector is network-based, with a high attack complexity that requires no privileges or user interaction.

Given the high potential for impact, organizations should implement strict input validation and file access controls to mitigate the risk associated with this vulnerability.

Risk & Impact Analysis

The real-world deployment risk associated with this vulnerability is significant. Attackers may leverage this vulnerability to gain unauthorized access to sensitive files, which could lead to data breaches and service disruptions. The blast radius is considerable, as many organizations may be unaware of this vulnerability in their systems.

The urgency for organizations is high, given the potential for exploitation. Organizations should address this vulnerability in their priority patch cycle to ensure that their systems remain secure.

Exploitation Status

Signal	Status
Known Exploit	No
Public PoC	No
Actively Exploited	No
Ransomware Use	No

Affected Versions

The vulnerable versions of the Morkva UA Shipping plugin range from n/a up to and including version 1.0.18. Organizations using this plugin should ensure they are running the latest patched version to mitigate risks.

Mitigation & Remediation

Organizations should prioritize patching the Morkva UA Shipping plugin to version 1.0.19 or later to remediate this vulnerability. If an immediate patch cannot be applied, temporary measures should include restricting access to the plugin and monitoring for abnormal file access patterns.

For continuous assessment, organizations may consider utilizing continuous penetration testing services to identify further vulnerabilities.

Detection Guidance

Organizations should monitor their logs for any unauthorized file access attempts. Behavioral anomalies, such as unexpected file modifications or access to sensitive directories, should be flagged for further investigation.

AppSecure Threat Intelligence Insight

The long-term significance of this vulnerability lies in its representation of a common misconfiguration leading to serious security issues. Organizations should learn from this incident to implement stricter input validation and file access controls.

Furthermore, security teams should stay informed about emerging vulnerabilities and consider adopting a proactive approach to vulnerability management. Engaging in vulnerability management programs can provide a structured way to address these risks.

Ultimately, organizations must recognize the importance of timely remediation and continuous security assessments, such as penetration testing services, to maintain a robust security posture.

Disclaimer: This content was generated using AI. While we strive for accuracy, please verify critical information with official sources.

CVE ID	Title	Severity	Vulnerability Type	Published
CVE-2025-65418	CVE-2025-65418: High Vulnerability in docuFORM Managed Print Service Client	HIGH	Path Traversal	May 11, 2026
CVE-2025-65417	CVE-2025-65417: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	XSS	May 11, 2026
CVE-2025-65416	CVE-2025-65416: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	Unrestricted File Upload	May 11, 2026
CVE-2025-65415	CVE-2025-65415: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	Session Fixation	May 11, 2026
CVE-2025-61314	CVE-2025-61314: High Vulnerability in GmbH Mecury Managed Print Services	HIGH	XSS	May 11, 2026

CVE-2025-24685: High Vulnerability in Morkva UA Shipping