A critical Zip Slip vulnerability was discovered in the open-source data cleaning and transformation tool ‘OpenRefine’, which allowed attackers to import malicious code and execute arbitrary code. OpenRefine is a strong Java-based, free, open-source tool for handling messy data. This includes cleaning it, converting it into a different format, and expanding it with web services and external data. According to SonarCloud, […]

The post Zip Slip Vulnerability Let Attacker Import Malicious Code and Execute Arbitrary Code appeared first on GBHackers - Latest Cyber Security News | Hacker News.

Guru Baran

Source: gbHackers
Source Link: https://gbhackers.com/zip-slip-vulnerability/