CNNVD-202507-1749 Information
Jul 12, 2025
cve
CNNVD ID
CNNVD-202507-1749
Related CVE
- CNNVD Published: 2025-07-12
Description (Chinese)
SpringBoot_MyBatisPlus是周思伟个人开发者的一个SpringBoot集成MyBatisPlus。 SpringBoot_MyBatisPlus存在路径遍历漏洞,该漏洞源于对文件/file/download中参数Name的错误操作导致路径遍历。
Description (English)
SpringBoot MyBatisPlus is a SpringBoot integration of Zhou Siwei Personal Developer MyBatisPlus. SpringBoot MyBatisPlus has a loophole in the path, which results from an error in the parameter name of the file/file/download.
Hazard Level
High
Vulnerability Type
路径遍历
Affected Vendor
Live Support
Published
2025-07-12
Last Modified
2026-02-24
References
https://github.com/JoeyBling/SpringBoot_MyBatisPlus/issues/18 https://vuldb.com/?submit.609343 https://vuldb.com/?ctiid.316138 https://vuldb.com/?id.316138 https://access.redhat.com/security/cve/cve-2025-7488
Share on: