CVE-2023-42180: An arbitrary file upload vulnerability in the /user/upload component · Issue #I7X760 · 郑州程序员/lenosp - Gitee.com

An arbitrary file upload vulnerability in the /user/upload component of lenosp v1.0-v1.2.0 allows attackers to execute html code via a crafted JPG file.

Log in to the backend system, click on User Management in System Management, and
create a new user.

Upload a file in image format and change the suffix name of the uploaded file by
intercepting the data packet.

Upload an HTML file can trigger an XSS vulnerability.

At the code level, it can be seen that the file has been successfully uploaded to the server.