Количество 4
Количество 4
CVE-2020-7668
In all versions of the package github.com/unknwon/cae/tz, the ExtractTo function doesn't securely escape file paths in zip archives which include leading or non-leading "..". This allows an attacker to add or replace files system-wide.
CVE-2020-7668
In all versions of the package github.com/unknwon/cae/tz, the ExtractTo function doesn't securely escape file paths in zip archives which include leading or non-leading "..". This allows an attacker to add or replace files system-wide.
CVE-2020-7668
In all versions of the package github.com/unknwon/cae/tz, the ExtractT ...
GHSA-88jf-7rch-32qc
github.com/unknwon/cae Path Traversal vulnerability
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2020-7668 In all versions of the package github.com/unknwon/cae/tz, the ExtractTo function doesn't securely escape file paths in zip archives which include leading or non-leading "..". This allows an attacker to add or replace files system-wide. | CVSS3: 7.5 | 0% Низкий | больше 5 лет назад |
 | CVE-2020-7668 In all versions of the package github.com/unknwon/cae/tz, the ExtractTo function doesn't securely escape file paths in zip archives which include leading or non-leading "..". This allows an attacker to add or replace files system-wide. | CVSS3: 7.5 | 0% Низкий | больше 5 лет назад |
| CVE-2020-7668 In all versions of the package github.com/unknwon/cae/tz, the ExtractT ... | CVSS3: 7.5 | 0% Низкий | больше 5 лет назад |
| GHSA-88jf-7rch-32qc github.com/unknwon/cae Path Traversal vulnerability | CVSS3: 7.5 | 0% Низкий | больше 4 лет назад |
Уязвимостей на страницу