Submeter #689414: lsFusion 6.1 Arbitrary File Uploadinformação

TítulolsFusion 6.1 Arbitrary File Upload
DescriçãoAccessing the /uploadFile API invokes the handleRequest method in UploadFileRequestHandler. This method accepts an unvalidated sid parameter, which is directly appended to FileUtils.APP_UPLOAD_FOLDER_PATH. Additionally, there are no restrictions on the uploaded filename. When combined with directory traversal, this allows an attacker to upload JSP files to a web-accessible directory, leading to client-side file upload–based remote code execution (RCE).
Fonte⚠️ https://github.com/lsfusion/platform/issues/1544
Utilizador
 R1ckyZ (UID 92331)
Submissão05/11/2025 08h01 (há 6 meses)
Moderação16/11/2025 12h00 (11 days later)
EstadoAceite
Entrada VulDB332597 [lsfusion platform até 6.1 UploadFileRequestHandler.java UploadFileRequestHandler sid Travessia de Diretório]
Pontos20

VoltarVisão GeralPróximo

Do you know our Splunk app?

Download it now for free!