Hacking News OpenRefine's Zip Slip Vulnerability Could Let Attackers Execute Malicious Code - Printable Version +- (https://hackmyride.com/forum) +-- Forum: Automotive Hacking (https://hackmyride.com/forum/forumdisplay.php?fid=211) +--- Forum: News (https://hackmyride.com/forum/forumdisplay.php?fid=278) +---- Forum: The Hacker News (https://hackmyride.com/forum/forumdisplay.php?fid=279) +---- Thread: Hacking News OpenRefine's Zip Slip Vulnerability Could Let Attackers Execute Malicious Code (/showthread.php?tid=8413)

OpenRefine's Zip Slip Vulnerability Could Let Attackers Execute Malicious Code - The Hacker News - 10-02-2023 OpenRefine's Zip Slip Vulnerability Could Let Attackers Execute Malicious Code A high-severity security flaw has been disclosed in the open-source OpenRefine data cleanup and transformation tool that could result in arbitrary code execution on affected systems. Tracked as CVE-2023-37476 (CVSS score: 7.8), the vulnerability is a Zip Slip vulnerability that could have adverse impacts when importing a specially crafted project in versions 3.7.3 and below. "Although OpenRefine https://thehackernews.com/2023/10/openrefines-zip-slip-vulnerability.html