CVE-2025-8344 Information

Aug 01, 2025 cve

Description

A vulnerability classified as critical has been found in openviglet shio up to 0.3.8. Affected is the function shStaticFileUpload of the file shio-app/src/main/java/com/viglet/shio/api/staticfile/ShStaticFileAPI.java. The manipulation of the argument filename leads to unrestricted upload. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

Reference

https://github.com/openviglet/shio/issues/1029 https://github.com/openviglet/shio/issues/1029 https://github.com/openviglet/shio/issues/1029#issue-3239422554 https://vuldb.com/?ctiid.318294 https://vuldb.com/?id.318294 https://vuldb.com/?submit.617680

CNNVD-202507-3844 (Published: 2025-07-31)

Share on:

CVE-2025-8344 Information

Description

Reference

Related CNNVD