PT-2026-26635 · Qhora · Qhora

Published

2026-03-20

Updated

2026-03-30

CVE-2025-62845

CVSS v3.1

6.7

Medium

Vector

AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions QHora versions prior to 2.6.3.009

Description An improper neutralization of escape, meta, or control sequences vulnerability exists in QHora. A local attacker with administrator privileges can exploit this issue to cause unexpected behavior.

Recommendations Update to version 2.6.3.009 or later.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-150

Related Identifiers

CVE-2025-62845

ZDI-26-240

Affected Products

Qhora

PT-2026-26635 · Qhora · Qhora

CVE-2025-62845

Weakness Enumeration

Related Identifiers

Affected Products

References · 4