| 标题 | https://gitee.com/veal98/Echo Echo 4.2 Unrestricted Upload of File with Dangerous Type |
|---|
| 描述 | Echo framework version 2.4 contains an unauthenticated arbitrary file upload vulnerability in the /discuss/uploadMdPic endpoint. Attackers can upload arbitrary files without any authentication |
|---|
| 来源 | ⚠️ https://github.com/caigo8/CVE-md/blob/main/Echo/%E6%9C%AA%E6%8E%88%E6%9D%83%E4%BB%BB%E6%84%8F%E6%96%87%E4%BB%B6%E4%B8%8A%E4%BC%A0.md |
|---|
| 用户 | Caigo (UID 81287) |
|---|
| 提交 | 2025-04-02 17時24分 (1 年前) |
|---|
| 管理 | 2025-04-14 00時56分 (11 days later) |
|---|
| 状态 | 已接受 |
|---|
| VulDB条目 | 304607 [veal98 小牛肉 Echo 开源社区系统 4.2 /discuss/uploadMdPic editormd-image-file 权限提升] |
|---|
| 积分 | 16 |
|---|