| 标题 | geyang ml-logger latest Unrestricted Upload |
|---|
| 描述 | ### Summary
Insecure file uploads allow any unauthenticated user to upload and overwrite any type of file on the server, resulting in security vulnerabilities.
### Details
The routing handler function log_handler in the file [ml_logger/server.py](https://github.com/geyang/ml-logger/blob/main/ml_logger/server.py#L179-L205) uploads any file. |
|---|
| 来源 | ⚠️ https://github.com/geyang/ml-logger/issues/73 |
|---|
| 用户 | 0x1f (UID 89432) |
|---|
| 提交 | 2025-09-11 08時40分 (8 月前) |
|---|
| 管理 | 2025-09-25 08時58分 (14 days later) |
|---|
| 状态 | 已接受 |
|---|
| VulDB条目 | 325821 [geyang ml-logger 直到 acf255bade5be6ad88d90735c8367b28cbe3a743 ml_logger/server.py log_handler 文件 目录遍历] |
|---|
| 积分 | 19 |
|---|