| عنوان | jeecgboot 3.9.0 Absolute Path Traversal |
|---|
| الوصف | A Restricted Arbitrary File Read vulnerability exists in the Jeecg-boot AI RAG (Retrieval-Augmented Generation) module due to insufficient input validation within the Knowledge Base editing mechanism. Specifically, the endpoint processes user-supplied JSON metadata without properly sanitizing directory traversal sequences (e.g., ../) in the filePath parameter. it fails to canonically validate that the resolved file path resides within the intended upload directory. This oversight allows authenticated attackers to manipulate the file path references, forcing the application to read, parse, and return the content of arbitrary local files residing outside the web root—provided those files match the permitted extensions—thereby leading to unauthorized information disclosure. |
|---|
| المصدر | ⚠️ https://www.yuque.com/la12138/vxbwk9/ezodz20a26g36y8m |
|---|
| المستخدم | Saul1213 (UID 94577) |
|---|
| ارسال | 26/01/2026 08:29 AM (4 أشهر منذ) |
|---|
| الاعتدال | 06/02/2026 03:30 PM (11 days later) |
|---|
| الحالة | تمت الموافقة |
|---|
| إدخال VulDB | 344687 [JeecgBoot حتى 3.9.0 Retrieval-Augmented Generation edit filePath اجتياز الدليل] |
|---|
| النقاط | 20 |
|---|