CVE-2026-1186

EAP Legislator is vulnerable to Path Traversal in file extraction functionality. Attacker can prepare zipx archive default file type used by the Legislator application and choose arbitrary path outside the intended directory e.x. system startup where files will be extracted by the victim upon...

CVE-2026-1186

CVE-2026-1186 affects EAP Legislator: path traversal in the file extraction of ZIPX archives allows extraction outside the target directory (example: system startup). The issue is mitigated in version 2.25a. All connected sources describe the same vulnerability and fix; no additional exploit deta...

EUVD-2026-5103

EAP Legislator is vulnerable to Path Traversal in file extraction functionality. Attacker can prepare zipx archive default file type used by the Legislator application and choose arbitrary path outside the intended directory e.x. system startup where files will be extracted by the victim upon...

CVE-2026-1186

EAP Legislator is vulnerable to Path Traversal in file extraction functionality. Attacker can prepare zipx archive default file type used by the Legislator application and choose arbitrary path outside the intended directory e.x. system startup where files will be extracted by the victim upon...

CVE-2026-1186 Path Traversal in EAP Legislator

EAP Legislator is vulnerable to Path Traversal in file extraction functionality. Attacker can prepare zipx archive default file type used by the Legislator application and choose arbitrary path outside the intended directory e.x. system startup where files will be extracted by the victim upon...

CVE-2026-1186 Path Traversal in EAP Legislator

EAP Legislator is vulnerable to Path Traversal in file extraction functionality. Attacker can prepare zipx archive default file type used by the Legislator application and choose arbitrary path outside the intended directory e.x. system startup where files will be extracted by the victim upon...

PT-2026-5659

EAP Legislator is vulnerable to Path Traversal in file extraction functionality. Attacker can prepare zipx archive default file type used by the Legislator application and choose arbitrary path outside the intended directory e.x. system startup where files will be extracted by the victim upon...

SUSE CVE-2022-26280

Libarchive v3.6.0 was discovered to contain an out-of-bounds read via the component zipxlzmaaloneinit...

OESA-2022-1742 libarchive security update

libarchive is an open-source BSD-licensed C programming library that provides streaming access to a variety of different archive formats,including tar, cpio, pax, zip, and ISO9660 images. The distribution also includes bsdtar and bsdcpio, full-featured implementations of tar and cpio that use...

Libarchive v3.6.0 was discovered to contain an out-of-bounds read via the component zipx_lzma_alone_init.

...

ALPINE-CVE-2022-26280

Libarchive v3.6.0 was discovered to contain an out-of-bounds read via the component zipxlzmaaloneinit...

AZL-9210 CVE-2022-26280 affecting package libarchive for versions less than 3.6.1-1

Libarchive v3.6.0 was discovered to contain an out-of-bounds read via the component zipxlzmaaloneinit...

DEBIAN-CVE-2022-26280

Libarchive v3.6.0 was discovered to contain an out-of-bounds read via the component zipxlzmaaloneinit...

UBUNTU-CVE-2022-26280

Libarchive v3.6.0 was discovered to contain an out-of-bounds read via the component zipxlzmaaloneinit...

PT-2022-2115 · Unknown +9 · Libarchive +9

Name of the Vulnerable Software and Affected Versions: libarchive version 3.6.0 Description: The issue is related to an out-of-bounds read via the zipx lzma alone init function in the libarchive library. This can allow a remote attacker to disclose protected information or cause a denial of...

NanoCore RAT Scurries Past Email Defenses with .ZIPX Tactic

A spate of malicious emails with attachments delivering the NanoCore remote access trojan RAT is evading anti-malware and email scanners by abusing the .ZIPX file format. That’s according to researchers at Trustwave, who found that the campaign is effectively hiding a malicious executable by givi...

ZipX for Windows 1.71 ZIP File - Buffer Overflow Exploit

No description provided by source. !/usr/bin/perl +Exploit Title: ZipX for Windows v1.71 ZIP File Buffer Overflow Exploit +Date: 05\09\2011 +Author: C4SS!0 G0M3S +Software Link: http://download.cnet.com/ZipX/3000-22504-10518937.html +Version: v1.71 +Tested On: WIN-XP SP3 Brazilian Portuguese +CVE...

ZipX 1.71 - '.ZIP' File Buffer Overflow

!/usr/bin/perl +Exploit Title: ZipX for Windows v1.71 ZIP File Buffer Overflow Exploit +Date: 05\09\2011 +Author: C4SS!0 G0M3S +Software Link: http://download.cnet.com/ZipX/3000-22504-10518937.html +Version: v1.71 +Tested On: WIN-XP SP3 Brazilian Portuguese +CVE: N/A Reproduce: Open the zip file,...

ZipX For Windows 1.71 Buffer Overflow

!/usr/bin/perl +Exploit Title: ZipX for Windows v1.71 ZIP File Buffer Overflow Exploit +Date: 05\09\2011 +Author: C4SS!0 G0M3S +Software Link: http://download.cnet.com/ZipX/3000-22504-10518937.html +Version: v1.71 +Tested On: WIN-XP SP3 Brazilian Portuguese +CVE: N/A Reproduce: Open the zip file,...

ZipX 1.71 - .ZIP File Buffer Overflow

ZipX 1.71 - .ZIP File Buffer Overflow !/usr/bin/perl +Exploit Title: ZipX for Windows v1.71 ZIP File Buffer Overflow Exploit +Date: 05\09\2011 +Author: C4SS!0 G0M3S +Software Link: http://download.cnet.com/ZipX/3000-22504-10518937.html +Version: v1.71 +Tested On: WIN-XP SP3 Brazilian Portuguese...