64 matches found
EUVD-2022-7478
Malicious code in bioql PyPI...
EUVD-2022-7611
Malicious code in bioql PyPI...
CVE-2020-36560
Due to improper path sanitization, archives containing relative file paths can cause files to be written or overwritten outside of the target directory...
Arbitrary File Write
MindsDB is vulnerable to Arbitrary File Write. The vulnerability exists due to an unsafe extraction process in file.py which does not ensure relative file paths are escaped allowing an attacker to write arbitrary files outside the expected directory...
Path Traversal
github.com/gookit/goutil is vulnerable to Path Traversal Zip Slip. The vulnerability exists because the Unzip function in operate.go does not properly sanitize the relative file paths, allowing an attacker to access files outside the expected directory...
Path Traversal
github.com/uber/kraken is vulnerable to Path Traversal. The vulnerability exists because the downloadHandler parameter in the server.go does not properly sanitize the relative file paths and user inputs, allowing an attacker to write arbitrary files outside the expected directory...
Path Traversal
web-node-server is vulnerable to Path Traversal. The vulnerability is due to to a lack of sanitization of relative file paths in the start function of nodeserver.js which allows an attacker to write arbitrary files outside the expected directory...
Path Traversal
github.com/whyrusleeping/tar-utils is vulnerable to Path Traversal. The vulnerability exists because the elems parameter in the Sanitize function of extractor.go does not properly sanitize the relative file paths, allowing an attacker to write arbitrary files outside the expected directory...
Unzip vulnerable to path traversal
Due to improper path sanitization, archives containing relative file paths can cause files to be written or overwritten outside of the target directory...
tar-utils Path Traversal vulnerability
Due to improper path sanitization, archives containing relative file paths can cause files to be written or overwritten outside of the target directory...
Cloud Foundry Archiver vulnerable to path traversal
Due to improper path santization, archives containing relative file paths can cause files to be written or overwritten outside of the target directory...
GHSA-JPF8-H7H7-3PPM tar-utils Path Traversal vulnerability
Due to improper path sanitization, archives containing relative file paths can cause files to be written or overwritten outside of the target directory...
GHSA-F5C5-HMW9-V8HX Unzip vulnerable to path traversal
Due to improper path sanitization, archives containing relative file paths can cause files to be written or overwritten outside of the target directory...
CVE-2020-36561
Due to improper path sanitization, archives containing relative file paths can cause files to be written or overwritten outside of the target directory...
CVE-2018-25046
Due to improper path sanitization, archives containing relative file paths can cause files to be written or overwritten outside of the target directory...
Input validation
Due to improper path sanitization, archives containing relative file paths can cause files to be written or overwritten outside of the target directory...
Input validation
Due to improper path sanitization, archives containing relative file paths can cause files to be written or overwritten outside of the target directory...
Input validation
Due to improper path sanitization, archives containing relative file paths can cause files to be written or overwritten outside of the target directory...
CVE-2020-36566 Path traversal in github.com/whyrusleeping/tar-utils
Due to improper path sanitization, archives containing relative file paths can cause files to be written or overwritten outside of the target directory...
CVE-2020-36561 Path traversal in github.com/yi-ge/unzip
Due to improper path sanitization, archives containing relative file paths can cause files to be written or overwritten outside of the target directory...