High severity7.8NVD Advisory· Published Jul 4, 2019· Updated Jun 17, 2026
CVE-2019-13241
CVE-2019-13241
Description
FlightCrew v0.9.2 and older are vulnerable to a directory traversal, allowing attackers to write arbitrary files via a ../ (dot dot slash) in a ZIP archive entry that is mishandled during extraction.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- FlightCrew/FlightCrewdescription
- Range: <=0.9.2
Patches
Vulnerability mechanics
References
3- github.com/Sigil-Ebook/flightcrew/issues/52nvdExploitThird Party Advisory
- salvatoresecurity.com/fun-with-fuzzers-how-i-discovered-three-vulnerabilities-part-3-of-3/nvdExploitThird Party Advisory
- usn.ubuntu.com/4055-1/nvdThird Party Advisory
News mentions
0No linked articles in our index yet.