CVE-2025-34292 | BeWelcome Rox getCallbackAction formkit_memory_recovery deserialization

A vulnerability has been found in BeWelcome Rox and classified as critical. Impacted is the function RoxPOSTHandler::getCallbackAction. The manipulation of the argument formkit_memory_recovery leads to deserialization.

This vulnerability is uniquely identified as CVE-2025-34292. The attack is possible to be carried out remotely. No exploit exists.

It is suggested to install a patch to address this issue.VulDB Recent EntriesRead More