Submit #239802: http://jimureport.com/ https://mvnrepository.com/artifact/org.jeecgframework.jimureport/jimureport-spring-boot-starter/1.6.1 jimureport <= 1.6.1 arbitrary file writeinfo

Titlehttp://jimureport.com/ https://mvnrepository.com/artifact/org.jeecgframework.jimureport/jimureport-spring-boot-starter/1.6.1 jimureport <= 1.6.1 arbitrary file write
DescriptionJimureport has the function of remotely downloading files and writing them to the server, but the file name is not verified during the download and writing process, resulting in a special file name can be constructed to write arbitrary files, and an attacker can exploit this vulnerability to write SSH public key or write WAR packages to deploy Trojan files (when the application is deployed with Tomcat).
Source⚠️ https://github.com/N0b1e6/exp/blob/main/README.md
User
 N0b1e6 (UID 42939)
Submission11/17/2023 04:14 (3 years ago)
Moderation11/26/2023 16:08 (9 days later)
StatusAccepted
VulDB entry246133 [jeecgboot JimuReport up to 1.6.1 /download/image imageUrl path traversal]
Points19

PreviousOverviewNext

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!