| عنوان | diyhi bbs 6.8 Sensitive information leakage vulnerability |
|---|
| الوصف | In diyhi bbs latest version 6.8 (src/main/java/cms/web/action/filePackage/FilePackageManageAction.java) , users can package any file into a compressed package and download it, resulting in compressing and downloading the database account password configuration file, revealing sensitive information. |
|---|
| المصدر | ⚠️ https://github.com/August829/Yu/blob/main/58ead8e7e08bfb0e1.md |
|---|
| المستخدم | Yu Bao (UID 88956) |
|---|
| ارسال | 14/08/2025 09:57 AM (11 أشهر منذ) |
|---|
| الاعتدال | 25/08/2025 04:17 PM (11 days later) |
|---|
| الحالة | تمت الموافقة |
|---|
| إدخال VulDB | 321296 [diyhi bbs حتى 6.8 File Compression FilePackageManageAction.java idGroup الكشف عن المعلومات] |
|---|
| النقاط | 17 |
|---|