| Título | http://jimureport.com/ https://mvnrepository.com/artifact/org.jeecgframework.jimureport/jimureport-spring-boot-starter/1.6.1 jimureport <= 1.6.1 arbitrary file write |
|---|
| Descrição | Jimureport has the function of remotely downloading files and writing them to the server, but the file name is not verified during the download and writing process, resulting in a special file name can be constructed to write arbitrary files, and an attacker can exploit this vulnerability to write SSH public key or write WAR packages to deploy Trojan files (when the application is deployed with Tomcat). |
|---|
| Fonte | ⚠️ https://github.com/N0b1e6/exp/blob/main/README.md |
|---|
| Utilizador | N0b1e6 (UID 42939) |
|---|
| Submissão | 17/11/2023 04h14 (há 3 anos) |
|---|
| Moderação | 26/11/2023 16h08 (9 days later) |
|---|
| Estado | Aceite |
|---|
| Entrada VulDB | 246133 [jeecgboot JimuReport até 1.6.1 /download/image imageUrl Travessia de Diretório] |
|---|
| Pontos | 19 |
|---|