제출 #598365: ageerle https://github.com/ageerle/ruoyi-ai v2.0.0 Unrestricted Upload정보

제목ageerle https://github.com/ageerle/ruoyi-ai v2.0.0 Unrestricted Upload
설명The open source project "ageerle/ruoyi-ai" which implements AI chat and painting functions based on ruoyi-plus has an arbitrary file upload vulnerability, which allows attackers to upload any malicious files to any path on the server, resulting in the risk of arbitrary code execution and arbitrary file overwriting on the server.
원천⚠️ https://github.com/ageerle/ruoyi-ai/issues/9
사용자
 Anonymous User
제출2025. 06. 17. PM 05:03 (1 년도 ago)
모더레이션2025. 06. 21. AM 07:12 (4 days later)
상태수락
VulDB 항목313574 [ageerle ruoyi-ai 2.0.0 SseServiceImpl.java speechToTextTranscriptionsV2/upload 파일 권한 상승]
포인트들18

Might our Artificial Intelligence support you?

Check our Alexa App!