CNNVD-202508-1676 Information
CNNVD ID
CNNVD-202508-1676
Related CVE
- CNNVD Published: 2025-08-14
Description (Chinese)
litemall是linlinjava个人开发者的一个小商场系统。 litemall 1.8.0及之前版本存在代码问题漏洞,该漏洞源于对文件litemall-admin-api/src/main/java/org/linlinjava/litemall/admin/web/AdminStorageController.java中参数File的错误操作导致任意文件上传。
Description (English)
Itemall is a small mall system for Linlinjava personal developers. Litemall 1.8.0 and previous versions had a code problem loophole, which stemmed from an error in the uploading of File, the parameter in document Litemal-admin-api/src/main/java/org/linjava/litemall/admin/web/AdminStorageController.java.
Hazard Level
High
Vulnerability Type
代码问题
Affected Vendor
个人开发者
Published
2025-08-14
Last Modified
2026-02-24
References
https://vuldb.com/?submit.628098 https://github.com/linlinjava/litemall/issues/565 https://vuldb.com/?ctiid.319960 https://github.com/linlinjava/litemall/issues/565#issue-3267850415 https://vuldb.com/?id.319960 https://nvd.nist.gov/vuln/detail/CVE-2025-8965
Share on: