mssalvatore/CVE-2019-14751_PoC

Releases0

Stars4

A Proof of Concept for CVE-2019-14751

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2019-14751 ↗	Aug 22, 2019Thursday, 22 August 2019, 16:15	—	5 MEDIUM
NLTK Downloader before 3.4.5 is vulnerable to a directory traversal, allowing attackers to write arbitrary files via a ../ (dot dot slash) in an NLTK package (ZIP archive) that is mishandled during extraction.