| Title | jeecgboot jeewx-boot up to 641ab52 Arbitrary file reading |
|---|
| Description | An arbitrary file read (path traversal) vulnerability in jeecgboot/jeewx-boot stems from flawed filename sanitization in getFileName: the code strips .., /../, ./ and similar tokens but then removes all whitespace, which enables an attacker to encode traversal sequences as %20.%20.%20 (space–dot–space). After URL decoding and the subsequent whitespace removal this pattern collapses into ../, bypassing the checks and allowing directory traversal; a crafted request to the vulnerable endpoint (for example, /goldeneggs/back/wxActGoldeneggsPrizes/getImgUrl?imgurl=/%20.%20.%20/.../etc/passwd) can therefore read arbitrary files such as /etc/passwd. |
|---|
| Source | ⚠️ https://github.com/jeecgboot/jeewx-boot/issues/47 |
|---|
| User | fushuling (UID 45488) |
|---|
| Submission | 10/21/2025 05:52 (8 months ago) |
|---|
| Moderation | 11/03/2025 07:49 (13 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 330916 [jeecgboot jeewx-boot up to 641ab52c3e1845fec39996d7794c33fb40dad1dd WxActGoldeneggsPrizesController.java getImgUrl imgurl path traversal] |
|---|
| Points | 20 |
|---|