Security Advisory

CVE-2025-12867

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-11-10 03:02:49

Last updated 2025-11-12 16:50:21

Assigner twcert

State PUBLISHED

Description

EIP Plus developed by Hundred Plus has an Arbitrary File Uplaod vulnerability, allowing privileged remote attackers to upload and execute web shell backdoors, thereby enabling arbitrary code execution on the server.

← Browse all CVEs View on cve.org ↗