CVE-2023-27025
7.5HIGHAn arbitrary file download vulnerability in the background management module of RuoYi v4.7.6 and below allows attackers to download arbitrary files in the server.
게시됨: 4/2/2023업데이트됨: 2/18/2025
설명
An arbitrary file download vulnerability in the background management module of RuoYi v4.7.6 and below allows attackers to download arbitrary files in the server.
AI 분석AI 기반
영향받는 제품
ruoyiruoyi
참조
- https://gitee.com/y_project/RuoYi/commit/432d5ce1be2e9384a6230d7ccd8401eef5ce02b0Permissions Required
- https://gitee.com/y_project/RuoYi/issues/I697Q5ExploitIssue Tracking
- https://gitee.com/y_project/RuoYi/commit/432d5ce1be2e9384a6230d7ccd8401eef5ce02b0Permissions Required
- https://gitee.com/y_project/RuoYi/issues/I697Q5ExploitIssue Tracking