Thank you for this great project.
Just wanted to highlight a CVE found on different static analysis tools.
CVE-2016-5725
Description
Directory traversal vulnerability in JCraft JSch before 0.1.54 on Windows, when the mode is ChannelSftp.OVERWRITE, allows remote SFTP servers to write to arbitrary files via a ..\ (dot dot backslash) in a response to a recursive GET command.
For more information check out https://www.oracle.com/security-alerts/cpuoct2020.html
Files
Hello Team,
Thank you for this great project. Just wanted to highlight a CVE found on different static analysis tools.
CVE-2016-5725
Do you. ind please help fix this CVE please?
Thank you