VYPR

Packagist (Composer) package

joomla/archive

pkg:composer/joomla/archive

Vulnerabilities (2)

  • CVE-2022-23793Mar 30, 2022
    affected < 1.1.12fixed 1.1.12

    An issue was discovered in Joomla! 3.0.0 through 3.10.6 & 4.0.0 through 4.1.0. Extracting an specifilcy crafted tar package could write files outside of the intended path.

  • CVE-2021-26028Mar 4, 2021
    affected < 1.1.10fixed 1.1.10

    An issue was discovered in Joomla! 3.0.0 through 3.9.24. Extracting an specifilcy crafted zip package could write files outside of the intended path.