boffart

1 exploit Active since Jun 2025
CVE-2025-52207 WRITEUP CRITICAL WRITEUP
MikoPBX <2024.1.114 - Code Injection
PBXCoreREST/Controllers/Files/PostController.php in MikoPBX through 2024.1.114 allows uploading a PHP script to an arbitrary directory.
CVSS 9.9