CodiMD - Realtime collaborative markdown notes on all platforms.
GNU Affero General Public License v3.0
9.1k
stars
1.05k
forks
source link
[security] The interface for uploading files does not require parameters and may be maliciously exploited #1863
Open
yinsel opened 3 months ago
I used MinIO, but I found that the interface can upload without parameters, which means my storage bucket may be maliciously uploaded.
I have correctly configured MinIO:
I may have missed some configurations to solve this problem, but I can't find them. I hope to get some help