3 matches found
CVE-2025-3410
A vulnerability classified as critical was found in mymagicpower AIAS 20250308. This vulnerability affects unknown code of the file trainingplatform/train-platform/src/main/java/top/aias/training/controller/LocalStorageController.java. The manipulation of the argument File leads to unrestricted...
CVE-2025-3410 mymagicpower AIAS LocalStorageController.java unrestricted upload
A vulnerability classified as critical was found in mymagicpower AIAS 20250308. This vulnerability affects unknown code of the file trainingplatform/train-platform/src/main/java/top/aias/training/controller/LocalStorageController.java. The manipulation of the argument File leads to unrestricted...
CVE-2025-3410
The CVE-2025-3410 entry concerns mymagicpower AIAS 20250308. The flaw resides in the LocalStorageController.java path in training_platform, where improper handling of the File argument enables unrestricted file upload. Attack is network-based and can be executed remotely, with public disclosure o...