hsweb4 输入验证错误漏洞

hsweb4 is an open-source full-responsive backend management framework based on Spring Boot 2. In versions of hsweb4 5.0.1 and earlier, there was a vulnerability related to input validation errors. This vulnerability stemmed from improper handling of the OAuth2Client function in the file...

hsweb4 路径遍历漏洞

hsweb4 is an open-source full-responsive backend management framework based on Spring Boot 2. Versions of hsweb4 prior to 5.0.1 contained a path traversal vulnerability. This vulnerability stemmed from improper handling of the parameter filename in the file upload component’s code, located at...