Craig Fairman

1 exploit Active since Mar 2025
CVE-2025-30076 WRITEUP HIGH WRITEUP
Koha <22.11.24, 23-23.11.12, 24-24.05.07, 24.06-24.11.02 - OS Command Injection via Scheduler
Koha before 24.11.02 allows admins to execute arbitrary commands via shell metacharacters in the tools/scheduler.pl report parameter.
CVSS 7.7