AI Score
Confidence
Low
EPSS
Percentile
29.3%
Loomio version 2.22.0 allows executing arbitrary commands on the server.
This is possible because the application is vulnerable to OS Command Injection.
fluidattacks.com/advisories/stones
github.com/loomio/loomio