Dolibarr 23.0.0: PHP eval() whitelist bypass → RCE via two bugs (CVE-2026-22666)(jivasecurity.com)
2 pointsby jiva4 hours ago1 comment
  • jiva4 hours ago
    Root cause analysis and full PoC. Coordinated disclosure — patch is available as of 4/4/2026