[HIGH] LibreNMS has Authenticated Remote File Inclusion in ajax_form.php that Allows RCE

PKSA-q97j-hw3m-d3vd CVE-2025-54138 GHSA-gq96-8w38-hhj2

Affected package: librenms/librenms

Affected version: <25.7.0

Reported by:
GitHub