decompress-zip vulnerabilities

Extract files from a ZIP archive

Latest version: 0.2.2

View on npm

Licenses detected

  • license: MIT >=0
Continuously find & fix vulnerabilities like these in your dependencies. Test and protect your applications

Direct Vulnerabilities

Known vulnerabilities in the decompress-zip package. This does not include vulnerabilities belonging to this package’s dependencies.

Vulnerability Vulnerable versions Snyk patch Published
  • H
Arbitrary File Write via Archive Extraction (Zip Slip)
<0.2.2,>=0.3.0 <0.3.2 Not available 24 Jan, 2019