CNNVD-202509-1478 Information

CNNVD ID

CNNVD-202509-1478

Related CVE

CVE-2025-10233

• CNNVD Published: 2025-09-10

Description (Chinese)

kodbox是warlee个人开发者的一个网络文件管理器。 kodbox 1.61版本存在路径遍历漏洞，该漏洞源于文件app/controller/explorer/editor.class.php中函数fileGet/fileSave对参数path的错误操作导致路径遍历。

Description (English)

kodbox is a web file manager for individual warlee developers. Version kodbox 1.61 has a path-to-path loophole, which stems from the error in the file app/controller/explorer/editor.class.php function fileGet/fileSave against parameter path.

Hazard Level

High

Vulnerability Type

路径遍历

Affected Vendor

个人开发者

Published

2025-09-10

Last Modified

2026-02-24

References

https://github.com/August829/Yu/blob/main/58ead8e7e08bfb011.md https://github.com/August829/Yu/blob/main/58ead8e7e08bfb012.md https://vuldb.com/?ctiid.323502 https://vuldb.com/?id.323502 https://vuldb.com/?submit.641755 https://vuldb.com/?submit.641757