CVE-2025-59709

Name of the Vulnerable Software and Affected Versions Biztalk360 versions through 11.5

Description An issue exists in Biztalk360 due to improper handling of user-supplied input when constructing a file path for server-side reading. A Super User attacker can exploit this to read files on the system and potentially perform authentication coercion, resulting in a Directory Traversal.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.