Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
mat2 (aka metadata anonymisation toolkit) before 0.13.0 allows ../ directory traversal during the ZIP archive cleaning process. This primarily affects mat2 web instances, in which clients could obtain sensitive information via a crafted archive.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
mat2 路径遍历漏洞
Vulnerability Description
mat2是jvoisin个人开发者的一个元数据删除工具。 mat2 0.13.0之前版本存在路径遍历漏洞,该漏洞源于允许在 ZIP 归档清理过程中遍历 ../ 目录。攻击者利用该漏洞通过特制的文件获取敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A