Junrar: Path Traversal (Zip-Slip) via Sibling Directory Name Prefix

Summary A path traversal vulnerability in LocalFolderExtractor allows an attacker to write arbitrary files with attacker-controlled content into sibling directories when a crafted RAR archive is extracted. Example Given an extraction directory set to /tmp/extract, a crafted archive with an entry...

CVE-2025-34451

rofl0r/proxychains-ng versions up to and including 4.17 and prior to commit cc005b7 contain a stack-based buffer overflow vulnerability in the function proxyfromstring located in src/libproxychains.c. When parsing crafted proxy configuration entries containing overly long username or password...

PT-2025-52353

Name of the Vulnerable Software and Affected Versions rofl0r/proxychains-ng versions up to and including 4.17 and prior to commit cc005b7 Description The software contains a stack-based buffer overflow in the proxy from string function, located in src/libproxychains.c. This occurs when parsing...

EUVD-2008-0455

Malware in sbrugna...

PT-2023-26797 · Zip Swift · Zip Swift

Name of the Vulnerable Software and Affected Versions: Zip Swift version 2.1.2 Description: The issue allows attackers to execute a path traversal attack via a crafted zip entry. This enables attackers to potentially access or modify files outside the intended directory, posing a security risk...

CVE-2016-7889

Adobe Digital Editions versions 4.5.2 and earlier has an issue with parsing crafted XML entries that could lead to information disclosure...

CVE-2006-3251

Heap-based buffer overflow in the arraypush function in hashcash.c for Hashcash before 1.21 might allow attackers to execute arbitrary code via crafted entries...

DEBIAN-CVE-2006-3251

Heap-based buffer overflow in the arraypush function in hashcash.c for Hashcash before 1.21 might allow attackers to execute arbitrary code via crafted entries...