2 matches found
CVE-2025-7487 JoeyBling SpringBoot_MyBatisPlus upload SysFileController unrestricted upload
A vulnerability, which was classified as critical, was found in JoeyBling SpringBootMyBatisPlus up to a6a825513bd688f717dbae3a196bc9c9622fea26. This affects the function SysFileController of the file /file/upload. The manipulation of the argument portraitFile leads to unrestricted upload. It is...
CVE-2025-7487
The CVE-2025-7487 entry concerns JoeyBling SpringBoot_MyBatisPlus, specifically the SysFileController in /file/upload. The vulnerability arises from improper handling of the portraitFile argument, enabling unrestricted file uploads and remote exploitation. Public disclosures exist, but the exact ...