Public Disclosure of a Critical Arbitrary File Overwrite Vulnerability: Zip Slip
8y agoen
Source
The Snyk Security team is today announcing the public disclosure of a critical arbitrary file overwrite vulnerability called Zip Slip. It is a widespread vulnerability which typically results in remote command execution. The vulnerability affects thousands of projects.
You might also wanna read
Critical 7-Zip vulnerability (CVE-8.8) enables code execution via crafted archive files; update to version 26.01 urged
A critical 8.8-rated CVE vulnerability has been discovered in the popular open-source archive utility 7-Zip. The flaw allows remote code exe
Analysis of 7-Zip vulnerabilities: CVE-2025-11001 and CVE-2025-11002
ThreatLocker·12d ago

Critical Arbitrary File Write Vulnerability in Dulwich Git Library (CVE-2026-42305) Allows RCE on Windows
A security vulnerability (CVE-2026-42305) has been discovered in Dulwich, a pure-Python Git implementation. Versions 0.10.0 through 1.2.4 ar
Critical Buffer Overflow Vulnerability Discovered in cURL Cookie Parsing Mechanism
A security researcher discovered a critical stack-based buffer overflow vulnerability in cURL's cookie parsing mechanism that can lead to re
hackerone.com·9mo ago
Critical RCE vulnerability CVE-2026-3854 discovered in GitHub's internal git infrastructure
Wiz Research discovered a critical vulnerability (CVE-2026-3854) in GitHub's internal git infrastructure affecting both GitHub.com and GitHu
OpenSSL Vulnerability CVE-2025-15467: Stack Overflow with Remote Code Execution Risk
JFrog Security Research team reports on a newly disclosed OpenSSL vulnerability, CVE-2025-15467, which is a stack overflow issue that could

Comments
Sign in to join the conversation.
No comments yet. Be the first.