Show filters
2 Total Results
Displaying 1-2 of 2
Sort by:
Attacker Value
Unknown

CVE-2021-32610

Disclosure Date: July 30, 2021 (last updated November 08, 2023)
In Archive_Tar before 1.4.14, symlinks can refer to targets outside of the extracted archive, a different vulnerability than CVE-2020-36193.
Attacker Value
Unknown

CVE-2020-36193

Disclosure Date: January 18, 2021 (last updated November 08, 2023)
Tar.php in Archive_Tar through 1.4.11 allows write operations with Directory Traversal due to inadequate checking of symbolic links, a related issue to CVE-2020-28948.