bolo-solo bolo-solo V2.6.4 Arbitrary file writeinformação

Título	https://github.com/bolo-blog/bolo-solo bolo-solo V2.6.4 Arbitrary file write
Descrição	A critical arbitrary file write vulnerability exists in Bolo-Solo version 2.6.4. The /import/cnblogs endpoint fails to properly validate or sanitize user-supplied filenames during blog import operations. As a result, an unauthenticated remote attacker can craft a malicious HTTP request that writes arbitrary content to any writable location on the server filesystem. The application directly uses attacker-controlled input as part of the file path without canonicalization, validation, or restriction to a safe directory. This allows directory traversal (e.g., using sequences like ../) and ultimately enables overwriting or creating files such as web-accessible scripts (e.g., .jsp, .html, or configuration files), leading to remote code execution, data tampering, or full system compromise.
Fonte	⚠️ https://github.com/bolo-blog/bolo-solo/issues/328
Utilizador	MaoQiu (UID 94327)
Submissão	20/01/2026 07h44 (há 5 meses)
Moderação	03/02/2026 15h04 (14 days later)
Estado	Aceite
Entrada VulDB	343980 [bolo-blog bolo-solo até 2.6.4 Filename BackupService.java importFromCnblogs Ficheiro Travessia de Diretório]
Pontos	20

Want to stay up to date on a daily basis?

Enable the mail alert feature now!