CVE-2025-8344 | openviglet shio up to 0.3.8 ShStaticFileAPI.java shStaticFileUpload filename unrestricted upload (Issue 1029)

A vulnerability classified as critical has been found in openviglet shio up to 0.3.8. Affected is the function shStaticFileUpload of the file shio-app/src/main/java/com/viglet/shio/api/staticfile/ShStaticFileAPI.java. The manipulation of the argument filename leads to unrestricted upload.

This vulnerability is traded as CVE-2025-8344. It is possible to launch the attack remotely. Furthermore, there is an exploit available.VulDB Recent EntriesRead More