Security Advisory

CVE-2025-22923

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-04-02 00:00:00

Last updated 2025-04-03 15:20:57

Assigner mitre

State PUBLISHED

Description

An issue in OS4ED openSIS v8.0 through v9.1 allows attackers to execute a directory traversal and delete files by sending a crafted POST request to /Modules.php?modname=users/Staff.php&removefile.

← Browse all CVEs View on cve.org ↗