| Title | letseeqiji gorobbs 1.0.8 Arbitrary File Write with Path Traversal |
|---|
| Description | This endpoint allows users to write arbitrary files into any directory. Due to the lack of input sanitization, it is vulnerable to directory traversal, enabling attackers to write files outside the intended directory structure.
Details can be found in https://github.com/letseeqiji/gorobbs/issues/18. |
|---|
| Source | ⚠️ https://github.com/letseeqiji/gorobbs/issues/18 |
|---|
| User | Tritium (UID 50779) |
|---|
| Submission | 07/02/2025 10:19 (11 months ago) |
|---|
| Moderation | 07/11/2025 10:37 (9 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 316095 [letseeqiji gorobbs up to 1.0.8 API user.go ResetUserAvatar filename path traversal] |
|---|
| Points | 18 |
|---|