Описание
Directory traversal vulnerability in ZipGenius 5.5 and earlier allows remote attackers to create and possibly modify arbitrary files via a ZIP file with a file whose name includes .. (dot dot) sequences.
Ссылки
- Patch
- Patch
- Patch
- Patch
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:zipgenius:zipgenius:standard_5.5:*:*:*:*:*:*:*
cpe:2.3:a:zipgenius:zipgenius:suite_5.5:*:*:*:*:*:*:*
EPSS
Процентиль: 74%
0.00853
Низкий
2.6 Low
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
Directory traversal vulnerability in ZipGenius 5.5 and earlier allows remote attackers to create and possibly modify arbitrary files via a ZIP file with a file whose name includes .. (dot dot) sequences.
EPSS
Процентиль: 74%
0.00853
Низкий
2.6 Low
CVSS2
Дефекты
NVD-CWE-Other