| 제목 | feiyuchuixue https://github.com/feiyuchuixue/sz-boot-parent sz-boot-parent <= v1.3.2-beta Arbitrary_File_Read/SSRF |
|---|
| 설명 | For the API `/api/admin/common/files/download`, **Server-Side Request Forgery (SSRF)** and arbitrary file read vulnerabilities can be exploited when the value of `oss.accessMode` is not set to **"private"**. |
|---|
| 원천 | ⚠️ https://github.com/yuccun/CVE/blob/main/sz-boot-parent-SSRF_and_Arbitrary_File_Read.md |
|---|
| 사용자 | yuccun (UID 93614) |
|---|
| 제출 | 2026. 02. 07. PM 08:15 (2 개월 ago) |
|---|
| 모더레이션 | 2026. 02. 25. AM 09:32 (18 days later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 347747 [feiyuchuixue sz-boot-parent 까지 1.3.2-beta download url 권한 상승] |
|---|
| 포인트들 | 16 |
|---|