Количество 3
Количество 3
CVE-2018-1002201
zt-zip before 1.13 is vulnerable to directory traversal, allowing attackers to write to arbitrary files via a ../ (dot dot slash) in a Zip archive entry that is mishandled during extraction. This vulnerability is also known as 'Zip-Slip'.
CVE-2018-1002201
zt-zip before 1.13 is vulnerable to directory traversal, allowing attackers to write to arbitrary files via a ../ (dot dot slash) in a Zip archive entry that is mishandled during extraction. This vulnerability is also known as 'Zip-Slip'.
GHSA-qcf3-9vmh-xw4r
Improper Limitation of a Pathname to a Restricted Directory in zt-zip
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2018-1002201 zt-zip before 1.13 is vulnerable to directory traversal, allowing attackers to write to arbitrary files via a ../ (dot dot slash) in a Zip archive entry that is mishandled during extraction. This vulnerability is also known as 'Zip-Slip'. | CVSS3: 6.3 | 2% Низкий | больше 7 лет назад |
 | CVE-2018-1002201 zt-zip before 1.13 is vulnerable to directory traversal, allowing attackers to write to arbitrary files via a ../ (dot dot slash) in a Zip archive entry that is mishandled during extraction. This vulnerability is also known as 'Zip-Slip'. | CVSS3: 5.5 | 2% Низкий | больше 7 лет назад |
| GHSA-qcf3-9vmh-xw4r Improper Limitation of a Pathname to a Restricted Directory in zt-zip | CVSS3: 5.5 | 2% Низкий | больше 3 лет назад |
Уязвимостей на страницу