nuclei-templates/file/nodejs/admzip-path-overwrite.yaml

id: admzip-path-overwrite

info:
  name: Admzip Path Overwrite
  author: me_dheeraj (https://twitter.com/Dheerajmadhukar)
  severity: info
  description: Insecure ZIP archive extraction using adm-zip can result in arbitrary path over write and can result in code injection.
  tags: file,nodejs,admzip

file:
  - extensions:
      - all

    matchers:
      - type: regex
        regex:
          - "require\\\\('adm-zip'\\\\)"
          - "\\.forEach\\(function .*\\(.*, \\.\\*\\) \\{"
          - "\\.createWriteStream\\(.*\\) \\}, \\.\\*\\)"
          - "\\.writeFile\\(.*\\)"
          - "\\.writeFileSync\\(.*\\) \\}, \\.\\*\\)"
        condition: or
Create admzip-path-overwrite.yaml 2022-12-22 11:25:24 +00:00			`id: admzip-path-overwrite`

			`info:`
			`name: Admzip Path Overwrite`
			`author: me_dheeraj (https://twitter.com/Dheerajmadhukar)`
			`severity: info`
			`description: Insecure ZIP archive extraction using adm-zip can result in arbitrary path over write and can result in code injection.`
			`tags: file,nodejs,admzip`

			`file:`
			`- extensions:`
			`- all`

			`matchers:`
			`- type: regex`
			`regex:`
Update admzip-path-overwrite.yaml 2023-06-28 05:19:55 +00:00			`- "require\\\\('adm-zip'\\\\)"`
			`- "\\.forEach\\(function .\\(., \\.\\*\\) \\{"`
			`- "\\.createWriteStream\\(.\\) \\}, \\.\\\\)"`
			`- "\\.writeFile\\(.*\\)"`
			`- "\\.writeFileSync\\(.\\) \\}, \\.\\\\)"`
Create admzip-path-overwrite.yaml 2022-12-22 11:25:24 +00:00			`condition: or`