CVE-2025-8526

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "https://github.com/Exrick/xboot/issues/71", "name": "https://github.com/Exrick/xboot/issues/71", "tags": [], "refsource": ""}, {"url": "https://github.com/Exrick/xboot/issues/71", "name": "https://github.com/Exrick/xboot/issues/71", "tags": [], "refsource": ""}, {"url": "https://github.com/Exrick/xboot/issues/71#issue-3252446955", "name": "https://github.com/Exrick/xboot/issues/71#issue-3252446955", "tags": [], "refsource": ""}, {"url": "https://github.com/Exrick/xboot/issues/71#issue-3252446955", "name": "https://github.com/Exrick/xboot/issues/71#issue-3252446955", "tags": [], "refsource": ""}, {"url": "https://vuldb.com/?ctiid.318652", "name": "VDB-318652 | CTI Indicators (IOB, IOC, TTP, IOA)", "tags": [], "refsource": ""}, {"url": "https://vuldb.com/?id.318652", "name": "VDB-318652 | Exrick xboot UploadController.java upload unrestricted upload", "tags": [], "refsource": ""}, {"url": "https://vuldb.com/?submit.622173", "name": "Submit #622173 | Exrick https://github.com/Exrick/xboot <=3.3.4 Unrestricted Upload of File with Dangerous Type (CWE-434)", "tags": [], "refsource": ""}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "A vulnerability was found in Exrick xboot up to 3.3.4. It has been declared as critical. This vulnerability affects the function Upload of the file xboot-fast/src/main/java/cn/exrick/xboot/modules/base/controller/common/UploadController.java. The manipulation of the argument File leads to unrestricted upload. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used."}]}, "problemtype": {"problemtype_data": [{"description": []}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2025-8526", "ASSIGNER": "cna@vuldb.com"}}, "impact": {}, "publishedDate": "2025-08-04T21:15Z", "configurations": {"nodes": [], "CVE_data_version": "4.0"}, "lastModifiedDate": "2025-08-05T16:15Z"}