VYPR

Archive::Tar

by Perl Foundation

CVEs (1)

  • CVE-2018-12015HigJun 7, 2018
    risk 0.49cvss 7.5epss 0.08

    In Perl through 5.26.2, the Archive::Tar module allows remote attackers to bypass a directory-traversal protection mechanism, and overwrite arbitrary files, via an archive file containing a symlink and a regular file with the same name.