CVE-2025-59711 in Biztalk360info

Summary

An issue was discovered in Biztalk360 before 11.5. Because of mishandling of user-provided input in an upload mechanism, an authenticated attacker is able to write files outside of the destination directory and/or coerce an authentication from the service, aka Directory Traversal.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Responsible

MITRE

Reservation

09/19/2025

Disclosure

04/03/2026

Status

Confirmed

Entries

VulDB provides additional information and datapoints for this CVE:

IDVulnerabilityCWEExpCouCVE
355106Biztalk360 Upload path traversal22Not definedOfficial fixCVE-2025-59711

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

Sources

PreviousOverviewNext

Want to stay up to date on a daily basis?

Enable the mail alert feature now!