CVE-2025-4178

Name of the Vulnerable Software and Affected Versions xiaowei1118 java server up to 11a5bac8f4ba1c17e4bc1b27cad6d24868500e3a

Description A critical issue was found in the File Upload API component, specifically affecting the /src/main/java/com/changyu/foryou/controller/FoodController.java file. This issue leads to path traversal and can be initiated remotely. The exploit has been disclosed to the public.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.