| TVN ID | TVN-202510006 |
|---|---|
| CVE ID | CVE-2025-11948 |
| CVSS | 9.8 (Critical) CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
| Affected Products | Document Management System |
| Description | Document Management System developed by Excellent Infotek has an Arbitrary File Upload vulnerability, allowing unauthenticated remote attackers to upload and execute web shell backdoors, thereby enabling arbitrary code execution on the server. |
| Solution | Please contact the vendor for the update |
| Credit | Huang Yu Ze(CHT Security) |
| Public Date | 2025-10-20 |
:::