prompts.chat Path Traversal Vulnerability in Skill File Handling Allowing Arbitrary File Writing and Code Execution
Vulnerability
A path traversal vulnerability has been identified in prompts.chat skill file handling, prior to commit 0f8d4c3. This vulnerability allows attackers to write arbitrary files to the client system by creating malicious ZIP archives with unsanitized filenames that include path traversal sequences. The absence of server-side filename validation enables the injection of these sequences, which, when the ZIP files are extracted by vulnerable tools, can overwrite shell initialization files and lead to code execution.
Impact
Exploitation of this vulnerability allows for arbitrary file writing on the client system, with the potential to execute injected code, according to the overwritten shell initialization files.
Remediation
Users can update to the latest version of prompts.chat, as the vulnerability has been patched in commit 0f8d4c3.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.