| 제목 | macrozheng mall 10 Unrestricted Upload |
|---|
| 설명 | An unauthenticated file upload vulnerability exists in the mall-admin MinIO upload functionality.
The /minio/upload endpoint is included in the admin application's unauthenticated security ignore list. As a result, remote unauthenticated attackers can access the upload endpoint and submit arbitrary multipart files. The uploaded file is stored in MinIO and the application returns a public object URL.
Source-level chain:
mall-admin application.yml secure.ignored.urls includes /minio/upload
→ POST /minio/upload
→ MinioController.upload(MultipartFile file)
→ minioService.upload(file)
→ objectName is generated from yyyyMMdd/ + original filename
→ file is uploaded to MinIO
→ bucket policy may allow public read access
→ response returns a public object URL
Impact:
An unauthenticated attacker may be able to upload arbitrary files and obtain public URLs hosted by the target deployment. This can lead to public file hosting abuse, phishing content hosting, malware distribution, active-content hosting, or storage and bandwidth abuse, depending on deployment configuration.
The root cause is that a sensitive upload endpoint is excluded from authentication and lacks strict authorization and file validation. |
|---|
| 원천 | ⚠️ https://github.com/macrozheng/mall |
|---|
| 사용자 | feng123123 (UID 95215) |
|---|
| 제출 | 2026. 04. 26. AM 07:37 (1 월 ago) |
|---|
| 모더레이션 | 2026. 05. 23. PM 04:10 (27 days later) |
|---|
| 상태 | 중복 |
|---|
| VulDB 항목 | 319243 [macrozheng mall 까지 1.0.3 Add Product Page /minio/upload 파일 크로스 사이트 스크립팅] |
|---|
| 포인트들 | 0 |
|---|