Security Advisory

CVE-2025-15228

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-12-29 07:18:59

Last updated 2025-12-29 16:45:14

Assigner twcert

State PUBLISHED

Description

BPMFlowWebkit developed by WELLTEND TECHNOLOGY has a Arbitrary File Upload vulnerability, allowing unauthenticated remote attackers to upload and execute web shell backdoors, thereby enabling arbitrary code execution on the server.

← Browse all CVEs View on cve.org ↗