Open rhckrtu opened 2 months ago
Make sure files only get extracted within the specified destination to avoid the Zip Slip vulnerability. Without this patch the ZIP archive can contain relative paths and extract files to arbitrary paths the user has write permissions for.
Make sure files only get extracted within the specified destination to avoid the Zip Slip vulnerability. Without this patch the ZIP archive can contain relative paths and extract files to arbitrary paths the user has write permissions for.