CVE-2025-34096

UNKNOWN 0.0

Easy File Sharing HTTP Server 7.2 Buffer Overflow via POST to /sendemail.ghp

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

A stack-based buffer overflow vulnerability exists in Easy File Sharing HTTP Server version 7.2. The flaw is triggered when a crafted POST request is sent to the /sendemail.ghp endpoint containing an overly long Email parameter. The application fails to properly validate the length of this field, resulting in a memory corruption condition. An unauthenticated remote attacker can exploit this to execute arbitrary code with the privileges of the server process.

CWE	CWE-119
Vendor	efs software inc.
Product	easy file sharing http server
Published	Jul 10, 2025
Last Updated	Apr 7, 2026

Stay Ahead of the Next One

Get instant alerts for efs software inc. easy file sharing http server

Be the first to know when new unknown vulnerabilities affecting efs software inc. easy file sharing http server are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

EFS Software Inc. / Easy File Sharing HTTP Server

7.2

References

NVD ↗ CVE.org ↗ EPSS Data ↗

raw.githubusercontent.com: https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/windows/http/easyfilesharing_post.rb exploit-db.com: https://www.exploit-db.com/exploits/42186 vulncheck: https://vulncheck/advisories/easy-file-sharing-http-server-buffer-overflow

Credits

bl4ck h4ck3r