7.5 High
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
29.5%
Loomio version 2.22.0 allows executing arbitrary commands on the server.
This is possible because the application is vulnerable to OS Command Injection.
fluidattacks.com/advisories/stones
github.com/loomio/loomio