snoopysecurity

2 exploits Active since Dec 2022
CVE-2020-36560 WRITEUP CRITICAL WRITEUP
go-unzip < 1.0.0 and artdarek/go-unzip < 2.0.0 - Path Traversal via Archive Extraction
Due to improper path sanitization, archives containing relative file paths can cause files to be written (or overwritten) outside of the target directory.
CVSS 9.1
CVE-2020-36561 WRITEUP CRITICAL WRITEUP
unzip < 1.0.3-0.20200308084313-2adbaa4891b9 - Path Traversal via Archive Extraction
Due to improper path sanitization, archives containing relative file paths can cause files to be written (or overwritten) outside of the target directory.
CVSS 9.1