all InfoSec news
OpenRefine's Zip Slip Vulnerability Could Let Attackers Execute Malicious Code
Oct. 2, 2023, 8:02 a.m. | info@thehackernews.com (The Hacker News)
The Hacker News thehackernews.com
Tracked as CVE-2023-37476 (CVSS score: 7.8), the vulnerability is a Zip Slip vulnerability that could have adverse impacts when importing a specially crafted project in versions 3.7.3 and below.
"Although OpenRefine
arbitrary code attackers code code execution cve cvss data flaw high malicious openrefine project result score security security flaw severity systems tool transformation vulnerability zip
More from thehackernews.com / The Hacker News
Jobs in InfoSec / Cybersecurity
Information Security Engineers
@ D. E. Shaw Research | New York City
Technology Security Analyst
@ Halton Region | Oakville, Ontario, Canada
Senior Cyber Security Analyst
@ Valley Water | San Jose, CA
Security Operations Vice President - Content Developer
@ JPMorgan Chase & Co. | Jersey City, NJ, United States
Computer and Forensics Investigator
@ ManTech | 221BQ - Cstmr Site,Springfield,VA
Senior Security Analyst
@ Oracle | United States