Security Advisory
CVE-2025-11221
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
Improper Limitation of a Pathname to a Restricted Directory (Path Traversal), Unrestricted Upload of File with Dangerous Type vulnerability in GTONE ChangeFlow allows Path Traversal, Accessing Functionality Not Properly Constrained by ACLs.This issue affects ChangeFlow: from All versions through v9.0.1.1.