Headline
GHSA-c2cc-3569-6jh2: Path traversal in ZIPFoundation
An issue in ZIPFoundation v0.9.16 allows attackers to execute a path traversal via extracting a crafted zip file.
Path traversal in ZIPFoundation
Moderate severity GitHub Reviewed Published Aug 31, 2023 to the GitHub Advisory Database • Updated Aug 31, 2023
Related news
CVE-2023-39138: Symlink path traversal vulnerability · Issue #282 · weichsel/ZIPFoundation
An issue in ZIPFoundation v0.9.16 allows attackers to execute a path traversal via extracting a crafted zip file.
CVE-2023-39139: Ostorlab: Mobile App Security Testing for Android and iOS
An issue in Archive v3.3.7 allows attackers to execute a path traversal via extracting a crafted zip file.