提交 #601028: eosphoros-ai DB-GPT <=v.0.7.2 Path Traversal信息

标题eosphoros-ai DB-GPT <=v.0.7.2 Path Traversal
描述DB-GPT doesn't perform security checks on the parameters passed by the route 'api/v2/serve/awel/flow/import', resulting in path traversal.
来源⚠️ https://github.com/eosphoros-ai/DB-GPT/issues/2774
用户
 Anonymous User
提交2025-06-20 05時33分 (10 月前)
管理2025-06-27 12時17分 (7 days later)
状态已接受
VulDB条目314088 [eosphoros-ai db-gpt 直到 0.7.2 import import_flow 文件 目录遍历]
积分15

上一步一览下一步

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!