| Titel | jeecgboot jeewx-boot up to 641ab52 Arbitrary file reading |
|---|
| Beschreibung | An arbitrary file read (path traversal) vulnerability in jeecgboot/jeewx-boot stems from flawed filename sanitization in getFileName: the code strips .., /../, ./ and similar tokens but then removes all whitespace, which enables an attacker to encode traversal sequences as %20.%20.%20 (space–dot–space). After URL decoding and the subsequent whitespace removal this pattern collapses into ../, bypassing the checks and allowing directory traversal; a crafted request to the vulnerable endpoint (for example, /goldeneggs/back/wxActGoldeneggsPrizes/getImgUrl?imgurl=/%20.%20.%20/.../etc/passwd) can therefore read arbitrary files such as /etc/passwd. |
|---|
| Quelle | ⚠️ https://github.com/jeecgboot/jeewx-boot/issues/47 |
|---|
| Benutzer | fushuling (UID 45488) |
|---|
| Einreichung | 21.10.2025 05:52 (vor 8 Monaten) |
|---|
| Moderieren | 03.11.2025 07:49 (13 days later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 330916 [jeecgboot jeewx-boot bis 641ab52c3e1845fec39996d7794c33fb40dad1dd WxActGoldeneggsPrizesController.java getImgUrl imgurl Directory Traversal] |
|---|
| Punkte | 20 |
|---|