Description
In PHP versions 7.3.x below 7.3.31, 7.4.x below 7.4.24 and 8.0.x below 8.0.11, in Microsoft Windows environment, ZipArchive::extractTo may be tricked into writing a file outside target directory when extracting a ZIP file, thus potentially causing files to be created or overwritten, subject to OS permissions.
Remediation
References
Related Vulnerabilities
TYPO3 CVE-2013-7080 Vulnerability (CVE-2013-7080)
WordPress Time-of-check Time-of-use (TOCTOU) Race Condition Vulnerability (CVE-2022-3590)
WordPress Plugin Import Spreadsheets from Microsoft Excel Cross-Site Scripting (10.1.3)
WordPress Plugin PictPress 'resize.php' Multiple Local File Include Vulnerabilities (1.0)