Uploaded image for project: 'Moodle app'
  1. Moodle app
  2. MOBILE-3949

Fix Zip Path Traversal vulnerability in Android

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Fixed
    • Icon: Minor Minor
    • 4.0.0
    • 3.9.5
    • Android
    • Hide

      This issue should be tested in Android only.

      1. Download different SCORMs and check that they're downloaded successfully (no error is displayed and the SCORM opens fine).
      Show
      This issue should be tested in Android only. Download different SCORMs and check that they're downloaded successfully (no error is displayed and the SCORM opens fine).
    • MOODLE_39_STABLE
    • MOODLE_400_STABLE
    • Moodle App 4.0

      Google doesn't allow us to publish our apps because of this vulnerability. It's caused by the zip plugin:

      https://github.com/MobileChromeApps/cordova-plugin-zip/issues/91

            dpalou Dani Palou
            dpalou Dani Palou
            Pau Ferrer Pau Ferrer
            Isabel Renedo Rouco Isabel Renedo Rouco
            Votes:
            0 Vote for this issue
            Watchers:
            3 Start watching this issue

              Created:
              Updated:
              Resolved:

                Error rendering 'clockify-timesheets-time-tracking-reports:timer-sidebar'. Please contact your Jira administrators.