jpress has an arbitrary file read vulnerability

## Affected version

≤Jpress v5.1.1

## Vendor

https://github.com/JPressProjects/jpress


## vulnerability File

jfinal-5.1.9.jar

## Description


Enter the background at [http://127.0.0.1:8080/admin/login](http://127.0.0.1:8080/admin/login). In System Management → Template → Edit Module, select to edit index.html, add a line of code in the file, and click Update File.

```text
#include("../../../../../../../../../Windows/win.ini")
```

![image](https://github.com/user-attachments/assets/7bddc924-58b2-49aa-b21e-a6fe873f412b)


Then visit the homepage, and you can see the content of the local `c:\Windows\win.ini` file.

![image](https://github.com/user-attachments/assets/e48dceb0-8c2e-47e6-a5ce-cddd6a04e1b0)



Modify the code to `../../WEB-INF/classes/jboot.properties`, and we can read the local database configuration file.

![image](https://github.com/user-attachments/assets/c196efdb-988e-4947-93a6-4381c40c06e4)

![image](https://github.com/user-attachments/assets/3d10c7c4-3c69-4016-9dbc-5e47f8aaa26b)



Provide feedback

Saved searches

Use saved searches to filter your results more quickly

jpress has an arbitrary file read vulnerability #189

Affected version

Vendor

vulnerability File

Description

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

jpress has an arbitrary file read vulnerability #189

Description

Affected version

Vendor

vulnerability File

Description

Metadata

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Issue actions