xiaoxiaoranxxx/CVE-2025-56815

xiaoxiaoranxxx/CVE-2025-56815

GitHubGitHub
GitHubgithub.com
Releases0
Stars5
Datart 1.0.0-rc.3 is vulnerable to Directory Traversal in the POST /viz/image interface, since the server directly uses MultipartFile.transferTo() to save the uploaded file to a path controllable by the user, and lacks strict verification of the filename.
Log in to subscribe

Collections containing this project

Showing collections based on your access.

This project is not in any collections you can view.