Submit #618986: Gitee 蛋糕商城JPA版 1.0 Unrestricted Uploadinfo

TitleGitee 蛋糕商城JPA版 1.0 Unrestricted Upload
Description蛋糕商城JPA版 is vulnerable to the Arbitrary File Upload vulnerability. In the backend management system, all image upload functionalities lack proper validation and restrictions, allowing arbitrary files to be uploaded.
Source⚠️ https://github.com/Bemcliu/cve-reports/blob/main/cve-03-%E8%9B%8B%E7%B3%95%E5%95%86%E5%9F%8EJPA%E7%89%88-Arbitrary%20File%20Upload/readme.md
User
 HJAQiang (UID 86075)
Submission07/19/2025 16:16 (12 months ago)
Moderation07/21/2025 09:14 (2 days later)
StatusAccepted
VulDB entry317076 [jerryshensjf JPACookieShop 蛋糕商城JPA版 1.0 GoodsController.java addGoods unrestricted upload]
Points16

Interested in the pricing of exploits?

See the underground prices here!