CVE-2025-57794

CVE-2025-57794: Unrestricted File Upload Vulnerability in Explorance Blue

Vendor Explorance
Product Blue
Weakness CWE-434 · Unrestricted file upload
Published January 28, 2026
Last update January 28, 2026

CVSS base score

What the vulnerability does

01Description

Explorance Blue versions prior to 8.14.9 contain an authenticated unrestricted file upload vulnerability in the administrative interface. The application does not adequately restrict uploaded file types, allowing malicious files to be uploaded and executed by the server. This condition enables remote code execution under default configurations.

Key dates

02Disclosure timeline

January 28, 2026 CVE published
January 28, 2026 Record updated