CVE-2025-1818 | zj1983 zz up to 2024-8 ZfileAction.upload file unrestricted upload

A vulnerability, which was classified as critical, has been found in zj1983 zz up to 2024-8. This issue affects some unknown processing of the file src/main/java/com/futvan/z/system/zfile/ZfileAction.upload. The manipulation of the argument file leads to unrestricted upload.

The identification of this vulnerability is CVE-2025-1818. The attack may be initiated remotely. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2025-1818 | zj1983 zz up to 2024-8 ZfileAction.upload file unrestricted upload

Related Posts

CVE-2024-32502 | Samsung Exynos W930 reference count

CVE-2024-4704 | Scott Paterson Contact Form 7 Plugin up to 5.9.4 on WordPress redirect

CVE-2023-49713 | Jtekt Electronics GC-A22W-CW NetBIOS Service denial of service

CVE-2024-24762 | tiangolo fastapi prior 0.109.0 HTTP Header Content-Type resource consumption