Go modules package
github.com/yi-ge/unzip
pkg:golang/github.com/yi-ge/unzip
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2020-36561 | Cri | 9.1 | < 1.0.3-0.20200308084313-2adbaa4891b9 | 1.0.3-0.20200308084313-2adbaa4891b9 | Dec 27, 2022 | Due to improper path sanitization, archives containing relative file paths can cause files to be written (or overwritten) outside of the target directory. |
- affected < 1.0.3-0.20200308084313-2adbaa4891b9fixed 1.0.3-0.20200308084313-2adbaa4891b9
Due to improper path sanitization, archives containing relative file paths can cause files to be written (or overwritten) outside of the target directory.