Medium severity6.3NVD Advisory· Published Jul 12, 2025· Updated Jun 17, 2026
CVE-2025-7487
CVE-2025-7487
Description
A vulnerability, which was classified as critical, was found in JoeyBling SpringBoot_MyBatisPlus up to a6a825513bd688f717dbae3a196bc9c9622fea26. This affects the function SysFileController of the file /file/upload. The manipulation of the argument portraitFile leads to unrestricted upload. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. This product takes the approach of rolling releases to provide continious delivery. Therefore, version details for affected and updated releases are not available.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2(expand)+ 1 more
- (no CPE)
- (no CPE)range: <=a6a825513bd688f717dbae3a196bc9c9622fea26
Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.