Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.4 views

EUVD-2023-2995

Malicious code in bioql PyPI...

5.3CVSS5.5AI score0.00433EPSS
Exploits0References6
RedhatCVE
RedhatCVEadded 2025/05/23 3:32 a.m.4 views

CVE-2023-27475

Goutil is a collection of miscellaneous functionality for the go language. In versions prior to 0.6.0 when users use fsutil.Unzip to unzip zip files from a malicious attacker, they may be vulnerable to path traversal. This vulnerability is known as a ZipSlip. This issue has been fixed in version...

8.8CVSS6.6AI score0.00644EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/22 11:54 p.m.8 views

CVE-2022-41920

Lancet is a general utility library for the go programming language. Affected versions are subject to a ZipSlip issue when using the fileutil package to unzip files. This issue has been addressed and a fix will be included in versions 2.1.10 and 1.3.4. Users are advised to upgrade. There are no...

8.8CVSS6.7AI score0.00874EPSS
Exploits1References1
OSV
OSVadded 2025/01/29 7:20 a.m.16 views

BIT-SOLR-2024-52012 Apache Solr: Configset upload on Windows allows arbitrary path write-access

Relative Path Traversal vulnerability in Apache Solr. Solr instances running on Windows are vulnerable to arbitrary filepath write-access, due to a lack of input-sanitation in the "configset upload" API. Commonly known as a "zipslip", maliciously constructed ZIP files can use relative filepaths t...

5.4CVSS5.9AI score0.13709EPSS
Exploits0References3
Prion
Prionadded 2023/03/16 5:15 p.m.11 views

Path traversal

go-used-util has commonly used utility functions for Go. Versions prior to 0.0.34 have a ZipSlip issue when using fsutil package to unzip files. When users use zip.Unzip to unzip zip files from a malicious attacker, they may be vulnerable to path traversal. The issue has been fixed in version...

6.8CVSS8.6AI score0.00789EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichmentadded 2023/03/16 4:26 p.m.6 views

CVE-2023-28105 Go-huge-util vulnerable to path traversal when unzipping files

go-used-util has commonly used utility functions for Go. Versions prior to 0.0.34 have a ZipSlip issue when using fsutil package to unzip files. When users use zip.Unzip to unzip zip files from a malicious attacker, they may be vulnerable to path traversal. The issue has been fixed in version...

8.8CVSS8.7AI score0.00789EPSS
Exploits0References2
NVD
NVDadded 2022/11/17 6:15 p.m.9 views

CVE-2022-41920

Lancet is a general utility library for the go programming language. Affected versions are subject to a ZipSlip issue when using the fileutil package to unzip files. This issue has been addressed and a fix will be included in versions 2.1.10 and 1.3.4. Users are advised to upgrade. There are no...

8.8CVSS0.00874EPSS
Exploits1References4
Cvelist
Cvelistadded 2022/11/17 12:0 a.m.11 views

CVE-2022-41920 Zip slip in Lancet

Lancet is a general utility library for the go programming language. Affected versions are subject to a ZipSlip issue when using the fileutil package to unzip files. This issue has been addressed and a fix will be included in versions 2.1.10 and 1.3.4. Users are advised to upgrade. There are no...

6.3CVSS8.8AI score0.00874EPSS
Exploits1References4
Rows per page
Query Builder