IDCVSSSummaryLast (major) updatePublished
CVE-2020-7668 5.0
In all versions of the package github.com/unknwon/cae/tz, the ExtractTo function doesn't securely escape file paths in zip archives which include leading or non-leading "..". This allows an attacker to add or replace files system-wide.
21-07-2021 - 11:39 23-06-2020 - 19:38
Back to Top Mark selected
Back to Top