VYPR

npm package

tmp

pkg:npm/tmp

Vulnerabilities (1)

  • CVE-2025-54798LowAug 7, 2025
    affected < 0.2.4fixed 0.2.4

    tmp is a temporary file and directory creator for node.js. In versions 0.2.3 and below, tmp is vulnerable to an arbitrary temporary file / directory write via symbolic link dir parameter. This is fixed in version 0.2.4.