CVE-2025-26845 Information

Description

An Eval Injection issue was discovered in Znuny through 7.1.3. A user with write access to the configuration file can use this to execute a command executed by the user running the backup.pl script.

Reference

https://www.znuny.com https://www.znuny.org/en/advisories/zsa-2025-03