| Title | iteaj iboot 1.1.3 File Upload 2 |
|---|
| Description | There is an arbitrary file upload vulnerability in the `/common/upload/batch ` interface of the iboot backend management framework v1.1.3, which allows uploading files with arbitrary suffixes, such as HTML-XSS |
|---|
| Source | ⚠️ https://github.com/uglory-gll/javasec/blob/main/iboot.md |
|---|
| User | uglory (UID 82151) |
|---|
| Submission | 04/05/2025 11:43 (1 Year ago) |
|---|
| Moderation | 04/06/2025 07:50 (20 hours later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 303539 [iteaj iboot 物联网网关 1.1.3 File Upload /common/upload/batch cross site scripting] |
|---|
| Points | 16 |
|---|