CVE-2019-14452

EPSS 3.04% · P87 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2019-14452

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Sigil before 0.9.16 is vulnerable to a directory traversal, allowing attackers to write arbitrary files via a ../ (dot dot slash) in a ZIP archive entry that is mishandled during extraction.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Sigil 路径遍历漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Sigil是一款开源的多平台电子书编辑器。 Sigil 0.9.16之前版本中存在路径遍历漏洞。该漏洞源于网络系统或产品未能正确地过滤资源或文件路径中的特殊元素。攻击者可利用该漏洞访问受限目录之外的位置。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2019-14452

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2019-14452

请登录查看更多情报信息。

https://github.com/Sigil-Ebook/Sigil/releases/tag/0.9.16x_refsource_MISC
https://salvatoresecurity.com/zip-slip-in-sigil-cve-2019-14452/x_refsource_MISC
https://github.com/Sigil-Ebook/Sigil/commit/369eebe936e4a8c83cc54662a3412ce8bef189e4x_refsource_MISC
https://github.com/Sigil-Ebook/Sigil/compare/ea7f27d...5b867e5x_refsource_MISC
https://github.com/Sigil-Ebook/Sigil/commit/0979ba8d10c96ebca330715bfd4494ea0e019a8fx_refsource_MISC
https://github.com/Sigil-Ebook/flightcrew/issues/52#issuecomment-505967936x_refsource_MISC
https://github.com/Sigil-Ebook/Sigil/commit/04e2f280cc4a0766bedcc7b9eb56449ceecc2ad4x_refsource_MISC
https://github.com/Sigil-Ebook/flightcrew/issues/52#issuecomment-505997355x_refsource_MISC
https://usn.ubuntu.com/4085-1/vendor-advisoryx_refsource_UBUNTU
https://nvd.nist.gov/vuln/detail/CVE-2019-14452

Same Patch Batch · n/a · 2019-07-31 · 33 CVEs total

CVE-2019-5058		SDL2_image 缓冲区错误漏洞
CVE-2019-14465		Schism Tracker 缓冲区错误漏洞
CVE-2019-14464		MilkyTracker milkyplay 缓冲区错误漏洞
CVE-2019-14463		libmodbus 缓冲区错误漏洞
CVE-2019-14462		libmodbus 缓冲区错误漏洞
CVE-2019-14459		nfdump 输入验证错误漏洞
CVE-2019-14456		Opengear console server 跨站脚本漏洞
CVE-2019-12797		Elm Electronics ELM327 OBD2 Bluetooth 信任管理问题漏洞
CVE-2019-12750		Symantec Endpoint Protection和Symantec Endpoint Protection Small Business Edition 权限许可和访问控制
CVE-2019-3958		WallacePOS 跨站脚本漏洞
CVE-2019-3959		WallacePOS 跨站请求伪造漏洞
CVE-2019-3960		WallacePOS 代码问题漏洞
CVE-2018-20872		DrayTek routers 跨站请求伪造漏洞
CVE-2007-6763		SAS Drug Development 输入验证错误漏洞
CVE-2019-5060		SDL2_image 输入验证错误漏洞
CVE-2019-5059		SDL2_image 输入验证错误漏洞
CVE-2019-14204		Das U-Boot 缓冲区错误漏洞
CVE-2019-5057		SDL2_image 缓冲区错误漏洞
CVE-2019-5020		YARA 输入验证错误漏洞
CVE-2019-13568		CImg Library 缓冲区错误漏洞

Showing top 20 of 33 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2019-14452

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2019-14452

I. Basic Information for CVE-2019-14452

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2019-14452

III. Intelligence Information for CVE-2019-14452

Same Patch Batch · n/a · 2019-07-31 · 33 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2019-14452

Leave a comment