[CRITICAL] phpVMS has an /importer authorization bypass causing full database wipe

PKSA-21zk-g67c-5537 CVE-2026-42569 GHSA-fv26-4939-62fh

Affected package: nabeel/phpvms

Affected version: <7.0.6

Reported by:
GitHub