Open ready-research opened 2 years ago
atlas is vulnerable to Zip Slip attacks using unzip. Reported in huntr.
atlas
ZipUtils.unzip("C:\evil.zip", "D:\test\test\test"); //input evil.zip contains ../../evil.exe which will be extracted in D:\test
All committers have signed the CLA.
atlas
is vulnerable to Zip Slip attacks using unzip. Reported in huntr.