Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
ZhongFuCheng3y Austin Upload Material Menu MaterialController.java getFile unrestricted upload
Vulnerability Description
A vulnerability was found in ZhongFuCheng3y Austin 1.0 and classified as critical. This issue affects the function getFile of the file com/java3y/austin/web/controller/MaterialController.java of the component Upload Material Menu. The manipulation leads to unrestricted upload. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-250619.
CVSS Information
CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
Vulnerability Type
危险类型文件的不加限制上传
Vulnerability Title
Austin 安全漏洞
Vulnerability Description
Austin是一个消息推送平台。 ZhongFuCheng3y Austin 1.0版本存在安全漏洞,该漏洞源于组件Upload Material Menu中的 com/java3y/austin/web/controller/MaterialController.java中的 getFile函数存在安全问题,导致上传不受限制。
CVSS Information
N/A
Vulnerability Type
N/A