6.7 Medium
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
44.8%
An issue in rymcu forest v.0.02 allows a remote attacker to obtain sensitive information via manipulation of the HTTP body URL in the com.rymcu.forest.web.api.common.UploadController file.
github.com/rymcu/forest/issues/149