Enviar #768030: Bytedesk <=1.3.9 Unrestricted Upload of File with Dangerous Type (CWE-434)información

TítuloBytedesk <=1.3.9 Unrestricted Upload of File with Dangerous Type (CWE-434)
DescripciónThe authenticated file upload endpoint routes SVG files through UploadWatermarkService.addWatermarkToFile(), which writes the file to disk without stripping embedded JavaScript. The POC uploads an SVG containing <script>alert(...)></script> to POST /api/v1/upload/file; the server returns HTTP 200 and a public URL. Visiting the URL triggers Stored XSS, bypassing watermark processing without sanitization.
Fuente⚠️ https://github.com/Bytedesk/bytedesk/issues/19
Usuario
 ZAST.AI (UID 87884)
Sumisión2026-02-26 07:03 (hace 2 meses)
Moderación2026-03-07 21:23 (10 days later)
EstadoAceptado
Entrada de VulDB349727 [Bytedesk hasta 1.3.9 SVG File UploadRestService.java handleFileUpload escalada de privilegios]
Puntos20

AnteriorVisión De ConjuntoPróximo

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!