| Title | https://github.com/zhangyanbo2007/youkefu youkefu 4.2.0 Arbitrary File Upload |
|---|
| Description | It used improper path concatenation in `WebIMController.java` and failed to perform proper file type validation for uploaded files, leading to an Arbitrary File Upload vulnerability. |
|---|
| Source | ⚠️ https://github.com/mapl3miss/uckefuVul/blob/main/uckefu-upload.md |
|---|
| User | maple147 (UID 83772) |
|---|
| Submission | 04/07/2025 04:50 (1 Year ago) |
|---|
| Moderation | 04/07/2025 08:37 (4 hours later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 303627 [zhangyanbo2007 youkefu 4.2.0 File Upload WebIMController.java ID path traversal] |
|---|
| Points | 15 |
|---|