2 matches found
Erupt Unrestricted Upload of File with Dangerous Type vulnerability
An arbitrary file upload vulnerability in the component /upload/GoodsCategory/image of erupt v1.12.19 allows attackers to execute arbitrary code via uploading a crafted file...
ERUPT 安全漏洞
ERUPT is a Java annotation-driven low-code + AI base framework by individual developer YuePeng. A security vulnerability exists in ERUPT v1.12.19, which originates from the existence of arbitrary file uploads in the /upload/GoodsCategory/image component, which could lead to arbitrary code executi...