exploitDog

GHSA-jvq3-99wq-j8xq

Опубликовано: 08 янв. 2026

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

Unrestricted file upload in the hotel review feature in QloApps versions 1.7.0 and earlier allows remote unauthenticated attackers to achieve remote code execution.

Unrestricted file upload in the hotel review feature in QloApps versions 1.7.0 and earlier allows remote unauthenticated attackers to achieve remote code execution.

Ссылки

EPSS

Процентиль: 65%

0.00496

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-434

Связанные уязвимости

CVE-2025-67325

CVSS3: 9.8

nvd

около 1 месяца назад

Unrestricted file upload in the hotel review feature in QloApps versions 1.7.0 and earlier allows remote unauthenticated attackers to achieve remote code execution.

EPSS

Процентиль: 65%

0.00496

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-434