Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:6574
HistoryJun 06, 2018 - 5:02 a.m.

Arbitrary File Write

2018-06-0605:02:44
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
11

0.001 Low

EPSS

Percentile

47.8%

Plexus Archiver Component is vulnerable to zip-slip vulnerability. The vulnerability exists when the attacker inputs a malicious zip archive with filenames including file traversal characters such as dot dot (..), leading to concatenation of file path locating outside of the destination folder.