mirror of https://github.com/swisskyrepo/PayloadsAllTheThings.git synced 2024-05-26 07:56:18 +02:00

History

Hi15358 83569c6142 Update and rename ReadMe.txt to README.md		2019-10-30 12:07:50 +08:00
..
README.md	Update and rename ReadMe.txt to README.md	2019-10-30 12:07:50 +08:00

README.md

Zip Slip

The vulnerability is exploited using a specially crafted archive that holds directory traversal filenames (e.g. ../../shell.php). The Zip Slip vulnerability can affect numerous archive formats, including tar, jar, war, cpio, apk, rar and 7z. The attacker can then overwrite executable files and either invoke them remotely or wait for the system or user to call them, thus achieving remote command execution on the victim’s machine.

Exploits
- Basic Exploit

Additional Notes

Detection

Any zip upload page on the application

Tools

evilarc https://github.com/ptoomey3/evilarc

Exploits

Basic Exploit

python evilarc.py shell.php -o unix -f shell.zip -p var/www/html/ -d 15

Additional Notes

For affected libraries and projects, visit https://github.com/snyk/zip-slip-vulnerability

README.md Unescape Escape

Zip Slip

Summary

Detection

Tools

Exploits

Basic Exploit

Additional Notes

References

README.md