Vulnerabilities > Compression AND Archive Extensions TZ Project

DATE CVE VULNERABILITY TITLE RISK
2020-06-23 CVE-2020-7668 Path Traversal vulnerability in Compression and Archive Extensions TZ Project Compression and Archive Extensions TZ Project
In all versions of the package github.com/unknwon/cae/tz, the ExtractTo function doesn't securely escape file paths in zip archives which include leading or non-leading "..".
7.5