Dotnetzip.semverd_project Dotnetzip.semverd
2 CVEs affecting Dotnetzip.semverd_project Dotnetzip.semverd. Latest disclosed: 2024-11-13. Critical: 1, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-48510 | Critical | 9.8 | 2024-11-13 | Directory Traversal vulnerability in DotNetZip v.1.16.0 and before allows a remote attacker to execute arbitrary code via the src/Zip.Shared/ZipEntry.Extract.c… |
CVE-2018-1002205 | Medium | 5.5 | 2018-07-25 | DotNetZip.Semvered before 1.11.0 is vulnerable to directory traversal, allowing attackers to write to arbitrary files via a ../ (dot dot slash) in a Zip archiv… |