CVE-2025-59711

Name of the Vulnerable Software and Affected Versions Biztalk360 versions prior to 11.5

Description A flaw exists in Biztalk360 that allows an authenticated attacker to write files outside the intended destination directory and potentially bypass authentication. This is due to improper handling of user-supplied data during file uploads. The issue involves a directory traversal condition.

Recommendations Update Biztalk360 to version 11.5 or later.