CVE-2025-70093

Publication date

2026-02-13 00:00:00

Family

mitre

State

PUBLISHED

Description

An issue in OpenSourcePOS v3.4.1 allows attackers to execute arbitrary code via returning a crafted AJAX response.