CVE-2025-8526 | Exrick xboot up to 3.3.4 UploadController.java upload File unrestricted upload (Issue 71)

A vulnerability was found in Exrick xboot up to 3.3.4. It has been declared as critical. This vulnerability affects the function Upload of the file xboot-fast/src/main/java/cn/exrick/xboot/modules/base/controller/common/UploadController.java. The manipulation of the argument File leads to unrestricted upload.

This vulnerability was named CVE-2025-8526. The attack can be initiated remotely. Furthermore, there is an exploit available.VulDB Recent EntriesRead More