Submeter #618986: Gitee 蛋糕商城JPA版 1.0 Unrestricted Uploadinformação

TítuloGitee 蛋糕商城JPA版 1.0 Unrestricted Upload
Descrição蛋糕商城JPA版 is vulnerable to the Arbitrary File Upload vulnerability. In the backend management system, all image upload functionalities lack proper validation and restrictions, allowing arbitrary files to be uploaded.
Fonte⚠️ https://github.com/Bemcliu/cve-reports/blob/main/cve-03-%E8%9B%8B%E7%B3%95%E5%95%86%E5%9F%8EJPA%E7%89%88-Arbitrary%20File%20Upload/readme.md
Utilizador
 HJAQiang (UID 86075)
Submissão19/07/2025 16h16 (há 12 meses)
Moderação21/07/2025 09h14 (2 days later)
EstadoAceite
Entrada VulDB317076 [jerryshensjf JPACookieShop 蛋糕商城JPA版 1.0 GoodsController.java addGoods Elevação de Privilégios]
Pontos16

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!