Security Advisory

CVE-2025-11320

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-10-06 04:32:06

Last updated 2025-10-06 19:17:16

Assigner VulDB

State PUBLISHED

Description

A security vulnerability has been detected in zhuimengshaonian wisdom-education up to 1.0.4. Impacted is the function uploadFile of the file src/main/java/com/education/core/controller/UploadController.java. Such manipulation of the argument File leads to unrestricted upload. It is possible to launch the attack remotely. The exploit has been disclosed publicly and may be used.

← Browse all CVEs View on cve.org ↗