ГлавнаяУязвимости → CVE-2025-67325
9.8критическая

CVE-2025-67325

Описание

Unrestricted file upload in the hotel review feature in QloApps versions 1.7.0 and earlier allows remote unauthenticated attackers to achieve remote code execution.

Затрагиваемое ПО
Webkul Qloapps
CVSS
Балл9.8 — критическая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Источники
https://github.com/Qloapps/QloAppshttps://github.com/mr7s3d0/CVE-2025-67325