Vulnerabilities > Flightcrew Project

DATE CVE VULNERABILITY TITLE RISK
2019-07-31 CVE-2019-14452 Path Traversal vulnerability in multiple products
Sigil before 0.9.16 is vulnerable to a directory traversal, allowing attackers to write arbitrary files via a ../ (dot dot slash) in a ZIP archive entry that is mishandled during extraction.
7.5
2019-07-04 CVE-2019-13241 Path Traversal vulnerability in multiple products
FlightCrew v0.9.2 and older are vulnerable to a directory traversal, allowing attackers to write arbitrary files via a ../ (dot dot slash) in a ZIP archive entry that is mishandled during extraction.
local
low complexity
flightcrew-project canonical CWE-22
7.8
2019-06-28 CVE-2019-13032 NULL Pointer Dereference vulnerability in Flightcrew Project Flightcrew 0.9.2
An issue was discovered in FlightCrew v0.9.2 and earlier.
local
low complexity
flightcrew-project CWE-476
5.5