ShowDoc RCE Flaw CVE-2025-0520 Actively Exploited on Unpatched Servers

A critical remote code execution vulnerability (CVE-2025-0520) in ShowDoc, a popular document management and collaboration platform used extensively in China, is being actively exploited in the wild. The flaw, which carries a severe CVSS score of 9.4 out of 10, stems from improper validation during file upload operations, allowing unrestricted file uploads that can be leveraged for remote code execution. Organizations running unpatched ShowDoc instances face immediate risk of compromise, data breach, and potential lateral movement within their networks. Security teams should prioritize patching to the latest available version and implement network-level restrictions on exposed instances as an interim measure. Monitoring for suspicious upload attempts and indicators of compromise is strongly advised.

A critical security vulnerability impacting ShowDoc, a document management and collaboration service popular in China, has come under active exploitation in the wild. The vulnerability in question is CVE-2025-0520 (aka CNVD-2020-26585), which carries a CVSS score of 9.4 out of 10.0. It relates to a case of unrestricted file upload that stems from improper validation of

A critical remote code execution vulnerability (CVE-2025-0520) in ShowDoc, a popular document management and collaboration platform used extensively in China, is being actively exploited in the wild. The flaw, which carries a severe CVSS score of 9.4 out of 10, stems from improper validation during file upload operations, allowing unrestricted file uploads that can be leveraged for remote code execution. Organizations running unpatched ShowDoc instances face immediate risk of compromise, data breach, and potential lateral movement within their networks. Security teams should prioritize patching to the latest available version and implement network-level restrictions on exposed instances as an interim measure. Monitoring for suspicious upload attempts and indicators of compromise is strongly advised. A critical security vulnerability impacting ShowDoc, a document management and collaboration service popular in China, has come under active exploitation in the wild. The vulnerability in question is CVE-2025-0520 (aka CNVD-2020-26585), which carries a CVSS score of 9.4 out of 10.0. It relates to a case of unrestricted file upload that stems from improper validation of A critical security vulnerability impacting ShowDoc, a document management and collaboration service popular in China, has come under active exploitation in the wild. The vulnerability in question is CVE-2025-0520 (aka CNVD-2020-26585), which carries a CVSS score of 9.4 out of 10.0. It relates to a case of unrestricted file upload that stems from improper validation of