| tiêu đề | sims Latest Unauthorized Arbitrary File Download Vulnerability |
|---|
| Mô tả | Rawchen/sims has an unauthorized arbitrary file download vulnerability. This vulnerability is due to the lack of permission management for the DownloadServlet route of sims-master/src/web/servlet/file/DownloadServlet.java, and the file name entered by the user is not filtered, resulting in the attacker to download important files, database configuration files, etc. of any system of the server without permission through the vulnerability. |
|---|
| Nguồn | ⚠️ https://github.com/yingxiujie/cve/issues/3 |
|---|
| Người dùng | yingxiujie (UID 96521) |
|---|
| Đệ trình | 06/04/2026 06:57 (cách đây 21 ngày) |
|---|
| Kiểm duyệt | 25/04/2026 16:05 (19 days later) |
|---|
| Trạng thái | Bản sao |
|---|
| Mục VulDB | 205148 [Sims 1.0 Attachment Download duyệt thư mục] |
|---|
| điểm | 0 |
|---|