What is CVE-2025-0399?

A medium-severity vulnerability has been identified in StarSea99 starsea-mall 1.0. This vulnerability allows for unrestricted file uploads, posing significant risks to organizations. Immediate action is advised to mitigate potential impacts.

What is the severity of CVE-2025-0399?

CVE-2025-0399 has a severity rating of MEDIUM with a CVSS base score of 5.1.

CVE-2025-0399 | Medium Vulnerability in StarSea99 starsea-mall

A vulnerability was found in StarSea99 starsea-mall 1.0. It has been declared as critical. This vulnerability affects the function UploadController of the file src/main/java/com/siro/mall/controller/common/uploadController.java. The manipulation of the argument file leads to unrestricted upload. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

The CVSS score for this vulnerability is 5.1, categorized as medium severity. This classification indicates a moderate level of risk that organizations must address. The potential for unauthorized access through remote file uploads necessitates prompt remediation.

Risk to organizations includes unauthorized access to sensitive data, leading to potential data breaches and loss of integrity. Attackers may leverage this vulnerability to upload malicious files, compromising the security of the entire application.

Organizations should prioritize patching immediately. Failure to address this vulnerability could result in severe consequences, including reputational damage and financial losses.

Vulnerability Details

A vulnerability was found in StarSea99 starsea-mall 1.0 that affects the function UploadController of the file src/main/java/com/siro/mall/controller/common/uploadController.java. The manipulation of the argument file leads to unrestricted upload, allowing attackers to execute arbitrary code or upload malicious files. The CVSS score is 5.1 with a medium severity rating.

Technical Analysis

The root cause of the vulnerability lies in insufficient input validation within the UploadController function. This flaw allows attackers to bypass file type restrictions and upload arbitrary files.

The attack vector is network-based, meaning attackers can initiate the exploit remotely. The attack complexity is low, requiring high privileges to exploit the vulnerability, and no user interaction is necessary for execution.

The confidentiality, integrity, and availability impacts are low, but the potential for elevated privileges through uploaded files presents a significant risk.

Risk & Impact Analysis

The real-world deployment risk associated with this vulnerability is substantial. Organizations utilizing the affected version of StarSea99 starsea-mall are at risk of unauthorized uploads that could lead to data compromise and application exploitation.

The urgency assessment based on the CVSS score indicates that organizations should address this vulnerability in their priority patch cycle. The potential blast radius for an attack leveraging this vulnerability could affect any organization that utilizes the software.

Signal	Status
Known Exploit	No
Public PoC	No
Actively Exploited	No
Ransomware Use	No

Affected Versions

The affected product is StarSea99 starsea-mall version 1.0. All versions prior to vendor patch are considered vulnerable.

Mitigation & Remediation

Organizations should prioritize applying patches available from the vendor. It is essential to upgrade to the latest version of StarSea99 starsea-mall to mitigate this vulnerability.

Additionally, organizations should consider implementing file upload restrictions, monitor for unauthorized file uploads, and enhance security measures to prevent exploitation.

Penetration testing can help identify similar vulnerabilities and strengthen defenses.

Detection Guidance

Organizations should implement monitoring for log indicators related to file uploads, behavioral anomalies in file handling, and network signatures associated with unauthorized access attempts.

AppSecure Threat Intelligence Insight

The long-term significance of this vulnerability emphasizes the importance of secure coding practices and regular security assessments, especially for applications handling file uploads.

Organizations should actively monitor for emerging threats in file upload vulnerabilities, as they represent a common attack vector in modern web applications.

To further enhance security, organizations may consider engaging in red teaming exercises to simulate potential attack scenarios and validate security measures.

For continuous improvement in security posture, organizations should establish a robust application security assessment program to identify and remediate vulnerabilities proactively.

Disclaimer: This content was generated using AI. While we strive for accuracy, please verify critical information with official sources.

CVE ID	Title	Severity	Vulnerability Type	Published
CVE-2025-65418	CVE-2025-65418: High Vulnerability in docuFORM Managed Print Service Client	HIGH	Path Traversal	May 11, 2026
CVE-2025-65417	CVE-2025-65417: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	XSS	May 11, 2026
CVE-2025-65416	CVE-2025-65416: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	Unrestricted File Upload	May 11, 2026
CVE-2025-65415	CVE-2025-65415: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	Session Fixation	May 11, 2026
CVE-2025-61314	CVE-2025-61314: High Vulnerability in GmbH Mecury Managed Print Services	HIGH	XSS	May 11, 2026

CVE-2025-0399: Medium Vulnerability in StarSea99 starsea-mall