Количество 2
Количество 2
CVE-2018-1002206
больше 7 лет назад
SharpCompress before 0.21.0 is vulnerable to directory traversal, allowing attackers to write to arbitrary files via a ../ (dot dot slash) in a Zip archive entry that is mishandled during extraction. This vulnerability is also known as 'Zip-Slip'.
CVSS3: 5.5
EPSS: Низкий
GHSA-fxh6-w476-hgr4
больше 6 лет назад
Directory Traversal in SharpCompress
CVSS3: 5.5
EPSS: Низкий
Уязвимостей на страницу
20
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2018-1002206 SharpCompress before 0.21.0 is vulnerable to directory traversal, allowing attackers to write to arbitrary files via a ../ (dot dot slash) in a Zip archive entry that is mishandled during extraction. This vulnerability is also known as 'Zip-Slip'. | CVSS3: 5.5 | 3% Низкий | больше 7 лет назад |
| GHSA-fxh6-w476-hgr4 Directory Traversal in SharpCompress | CVSS3: 5.5 | 3% Низкий | больше 6 лет назад |
Уязвимостей на страницу
20