Vulnerabilities

CVE-2019-13241

by Fred · 04/07/2019

FlightCrew v0.9.2 and older are vulnerable to a directory traversal, allowing attackers to write arbitrary files via a ../ (dot dot slash) in a ZIP archive entry that is mishandled during extraction.

Date published : 2019-07-04

https://github.com/Sigil-Ebook/flightcrew/issues/52

Fun with Fuzzers: How I Discovered Three Vulnerabilities (Part 3 of 3)

Similar

Tags: Cybersecurity Alert