7 matches found
forest 代码注入漏洞
Forest is a modern knowledge community backend project developed by RYMCU. It is implemented using SpringBoot, Shiro, MyBatis, JWT, and Redis. Versions of Forest 0.0.5 and earlier have a code injection vulnerability. This vulnerability stems from incorrect operations on the XssUtils.replaceHtmlCo...
forest 代码注入漏洞
Forest is a modern knowledge community backend project developed by RYMCU. It is implemented using SpringBoot, Shiro, MyBatis, JWT, and Redis. Versions of Forest 0.0.5 and earlier have a code injection vulnerability. This vulnerability stems from incorrect operations in the updateUserInfo functio...
forest 安全漏洞
forest is a modern knowledge community backend project of RYMCU open source , using SpringBoot + Shiro + MyBatis + JWT + Redis implementation . There is a security vulnerability in forest, which originates from the lack of authorization for the functions getAll/addDic/getAllDic/deleteDic in the...
forest 安全漏洞
forest is a modern knowledge community backend project open-sourced by RYMCU, implemented using SpringBoot + Shiro + MyBatis + JWT + Redis. A security vulnerability exists in forest, which originates from the lack of authorization of the GlobalResult function in the file...
Malicious code in ant-forest-hla676-project (npm)
The package ant-forest-hla676-project was found to contain malicious code...
MAL-2025-27101 Malicious code in nautilus-forest-wpw230-project (npm)
The package nautilus-forest-wpw230-project was found to contain malicious code...
forest Security breach
forest is a modern knowledge community backend project implemented using SpringBoot + Shiro + MyBatis + JWT + Redis. A security vulnerability exists in rymcu forest v.0.02 that allows remote attackers to obtain sensitive information by manipulating the HTTP URL in the...