EPSS
Percentile
51.7%
github.com/yi-ge/unzip is vulnerable to path traversal. The vulnerability exists in unzip.go due to improper path sanitization which allows an attacker to overwrite files outside of the target directory.
unzip.go
github.com/yi-ge/unzip/commit/2adbaa4891b9690853ef10216189189f5ad7dc73
github.com/yi-ge/unzip/pull/1
pkg.go.dev/vuln/GO-2020-0035