Admin Console - Plugin Upload vulnerable to ZipSlip

Description

Seen here: https://twitter.com/javashell185/status/1166299391335878656

POC sent to security mailing list.

Environment

None
Fixed

Assignee

Guus der Kinderen

Reporter

Dan Caseley

Expected Effort

None

Ignite Forum URL

None

Components

Fix versions

Affects versions

Priority

Major
Configure