漏洞标题
N/A
漏洞描述信息
Plenti <= 0.7.16 is vulnerable to code execution. Users uploading '.svelte' files with the /postLocal endpoint can define the file name as javascript codes. The server executes the uploaded file name in host, and cause code execution.
CVSS信息
N/A
漏洞类别
N/A