Security Advisory

CVE-2025-0984

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-05-06 11:24:44

Last updated 2025-05-06 13:30:47

Assigner TR-CERT

State PUBLISHED

Description

Unrestricted Upload of File with Dangerous Type, Improper Neutralization of Input During Web Page Generation (XSS or Cross-site Scripting) vulnerability in Netoloji Software E-Flow allows Accessing Functionality Not Properly Constrained by ACLs, Stored XSS, File Content Injection.This issue affects E-Flow: before 3.23.00.

← Browse all CVEs View on cve.org ↗