EPSS
Percentile
34.3%
zt-zip is vulnerable to arbitrary file write. The application does not properly validate the destination filepath during compressed file extraction, allowing a malicious user to overwrite files in the target directory.
github.com/zeroturnaround/zt-zip/blob/zt-zip-1.13/Changelog.txt
github.com/zeroturnaround/zt-zip/commit/759b72f33bc8f4d69f84f09fcb7f010ad45d6fff