| 제목 | jeecgboot jeewx-boot up to 641ab52 Arbitrary file reading |
|---|
| 설명 | An arbitrary file read (path traversal) vulnerability in jeecgboot/jeewx-boot stems from flawed filename sanitization in getFileName: the code strips .., /../, ./ and similar tokens but then removes all whitespace, which enables an attacker to encode traversal sequences as %20.%20.%20 (space–dot–space). After URL decoding and the subsequent whitespace removal this pattern collapses into ../, bypassing the checks and allowing directory traversal; a crafted request to the vulnerable endpoint (for example, /goldeneggs/back/wxActGoldeneggsPrizes/getImgUrl?imgurl=/%20.%20.%20/.../etc/passwd) can therefore read arbitrary files such as /etc/passwd. |
|---|
| 원천 | ⚠️ https://github.com/jeecgboot/jeewx-boot/issues/47 |
|---|
| 사용자 | fushuling (UID 45488) |
|---|
| 제출 | 2025. 10. 21. AM 05:52 (8 개월 ago) |
|---|
| 모더레이션 | 2025. 11. 03. AM 07:49 (13 days later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 330916 [jeecgboot jeewx-boot 까지 641ab52c3e1845fec39996d7794c33fb40dad1dd WxActGoldeneggsPrizesController.java getImgUrl imgurl 디렉토리 순회] |
|---|
| 포인트들 | 20 |
|---|