0.006 Low
EPSS
Percentile
79.4%
jszip is vulnerable to Directory Traversal. The vulnerability exists as untrusted user input is not properly validated and/or sanitized, allowing an attacker to exploit the vulnerability via a crafted ZIP archive.
exchange.xforce.ibmcloud.com/vulnerabilities/244499
github.com/advisories/GHSA-36fh-84j7-cv5h
github.com/Stuk/jszip/commit/2edab366119c9ee948357c02f1206c28566cdf15
github.com/Stuk/jszip/compare/v3.7.1...v3.8.0
github.com/Stuk/jszip/pull/813
www.mend.io/vulnerability-database/WS-2023-0004