[Bug] 未授权上传文件导致XSS漏洞 #4798

hbdxmz · 2023-03-16T10:07:07Z

DataEase 版本
v1.18.4

Bug 描述
文件上传未作权限校验，未登录用户可以直接向后台上传任意文件，文件类型未作校验，可以上传任意类型文件

Bug 重现步骤
漏洞接口：static/resource/upload/

3.上传文件名为b1ace870-c3d6-11ed-9218-a9fe7c2f5491，文件名不重复即可

弹出了cookie信息，形成存储XSS漏洞

BBchicken-9527 · 2023-03-16T10:37:50Z

感谢反馈，我们会尽快修复

xuwei-fit2cloud · 2023-03-24T01:29:06Z

v1.18.5版本已处理，请升级最新版本。

hbdxmz added the 类型:bug Something isn't working label Mar 16, 2023

hbdxmz assigned BBchicken-9527 and zrfit Mar 16, 2023

github-actions bot added the 状态:待处理 label Mar 16, 2023

github-actions bot added 状态:待反馈 and removed 状态:待处理 labels Mar 16, 2023

xuwei-fit2cloud added 状态:已完成 and removed 状态:待反馈 labels Mar 20, 2023

xuwei-fit2cloud added this to the v1.18.5 milestone Mar 20, 2023

hbdxmz closed this as completed Mar 20, 2023

hbdxmz reopened this Mar 20, 2023

xuwei-fit2cloud closed this as completed Mar 24, 2023

Provide feedback