EPSS
Percentile
47.9%
adm-zip is vulnerable to arbitrary file write. The application does not properly validate the destination filepath during compressed file extraction, allowing a malicious user to overwrite files in the target directory.
www.securityfocus.com/bid/107001
github.com/cthackers/adm-zip/commit/62f64004fefb894c523a7143e8a88ebe6c84df25
github.com/cthackers/adm-zip/commit/6f4dfeb9a2166e93207443879988f97d88a37cde
github.com/cthackers/adm-zip/pull/212