CNNVD-202507-1748 Information

CNNVD ID

CNNVD-202507-1748

Related CVE

CVE-2025-7487

• CNNVD Published: 2025-07-12

Description (Chinese)

SpringBoot_MyBatisPlus是周思伟个人开发者的一个SpringBoot集成MyBatisPlus。 SpringBoot_MyBatisPlus存在代码问题漏洞，该漏洞源于对文件/file/upload中参数portraitFile的错误操作导致任意文件上传。

Description (English)

SpringBoot MyBatisPlus is a SpringBoot integration of Zhou Siwei Personal Developer MyBatisPlus. SpringBoot MyBatisPlus has a code gap that results from an error in the use of the argument portraitfile in the file/file/upload, resulting in the uploading of any file.

Hazard Level

High

Vulnerability Type

代码问题

Affected Vendor

Live Support

Published

2025-07-12

Last Modified

2026-02-24

References

https://github.com/JoeyBling/SpringBoot_MyBatisPlus/issues/19 https://vuldb.com/?submit.609342 https://vuldb.com/?ctiid.316137 https://vuldb.com/?id.316137 https://access.redhat.com/security/cve/cve-2025-7487