| Title | ZHENFENG13 My-Blog 1.0 any file upload |
|---|
| Description | In src/main/java/com/site/blog/my/core/controller/admin/LogController. java, the uploadFileByEditomd method does not restrict the uploaded files, resulting in arbitrary file uploads |
|---|
| Source | ⚠️ https://github.com/ZHENFENG13/My-Blog/issues/140 |
|---|
| User | LVZC1 (UID 76422) |
|---|
| Submission | 12/26/2024 03:05 PM (1 Year ago) |
|---|
| Moderation | 01/05/2025 10:14 AM (10 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 290232 [zhenfeng13 My-Blog 1.0 BlogController.java uploadFileByEditomd editormd-image-file unrestricted upload] |
|---|
| Points | 15 |
|---|