CVE-2023-27755 Information

Description

go-bbs v1 was discovered to contain an arbitrary file download vulnerability via the component /api/v1/download.

Reference

https://github.com/gobbscom/go-bbs/issues/10