Main Vulnerability Database Vulnerabilities #VU25765

#VU25765 Path traversal in Zipper

Published: March 4, 2020

Vulnerability identifier: #VU25765

Vulnerability risk: Medium

CVSSv4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:P/U:Green

CVE-ID: N/A

CWE-ID: CWE-22

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vulnerable software:
Zipper

Software vendor:
Nils Plaschke

Description

The vulnerability allows a remote attacker to perform directory traversal attacks.

The vulnerability exists due to input validation error of filenames when processing directory traversal sequences. A remote attacker can send a specially crafted HTTP request and read arbitrary files on the system, leading to to arbitrary file write via Archive Extraction (Zip Slip).

Remediation

Install update from vendor's website.

External links

https://snyk.io/vuln/SNYK-PHP-CHUMPERZIPPER-552162
https://github.com/Chumper/Zipper/commit/d15207e010f8fe1bdd341376bd86d599c4166423