EPUB File Reader Directory Traversal Remote Code Execution Vulnerability

Description

A directory traversal vulnerability exists in EPUB File Reader, caused by insufficient validation of file paths during the extraction of EPUB archives into a temporary directory. User interaction is required to exploit this vulnerability in that the target must open a malicious EPUB file. An attacker can leverage this vulnerability to execute code in the context of the current user.