| Título | HummerRisk <=1.5.0 Path Traversal via Zip Slip |
|---|
| Descripción | A critical path traversal vulnerability exists in the archive extraction functionality of HummerRisk version <=1.5.0. When processing tar.gz and zip file uploads, the application fails to validate file paths within archives, allowing authenticated attackers to write arbitrary files to the filesystem. This vulnerability, known as Zip Slip, can lead to complete system compromise through multiple attack vectors including SSH key injection, cron job creation, web shell upload, and library replacement. An attacker with valid credentials and file upload permissions can achieve remote code execution with application privileges, potentially escalating to root access.
|
|---|
| Fuente | ⚠️ https://github.com/AnalogyC0de/public_exp/issues/11 |
|---|
| Usuario | Ana10gy (UID 93358) |
|---|
| Sumisión | 2026-02-13 15:56 (hace 2 meses) |
|---|
| Moderación | 2026-02-23 19:51 (10 days later) |
|---|
| Estado | Aceptado |
|---|
| Entrada de VulDB | 347418 [HummerRisk hasta 1.5.0 Archive Extraction CommandUtils.java extractTarGZ/extractZip recorrido de directorios] |
|---|
| Puntos | 20 |
|---|