CVE-2025-70364

CVSS v3.1

8.8

High

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Kiamo versions prior to 8.4

Description An issue allows authenticated administrative attackers to execute arbitrary PHP code on the server.

Recommendations Update to version 8.4 or later.

Exploit

Fix

Code Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

Weakness Enumeration

CVE-2025-70364

Kiamo