CVE-2025-0399 | StarSea99 starsea-mall 1.0 uploadController.java UploadController file unrestricted upload

CVE-2025-0399 | StarSea99 starsea-mall 1.0 uploadController.java UploadController file unrestricted upload

A vulnerability was found in StarSea99 starsea-mall 1.0. It has been declared as critical. This vulnerability affects the function UploadController of the file src/main/java/com/siro/mall/controller/common/uploadController.java. The manipulation of the argument file leads to unrestricted upload. This vulnerability was named CVE-2025-0399. The attack can be initiated remotely. Furthermore, there is an exploit available.