CVE-2025-67325
CVE-2025-67325 is an unrestricted file upload vulnerability in QloApps, affecting version 1.7.0 and earlier within the hotel review feature. The issue allows remote unauthenticated attackers to achieve remote code execution (RCE). Public advisories corroborate the RCE potential; evidence of a PoC...