Search CVE reports

Toggle filters

1 – 2 of 2 results

CVE-2023-37460

Medium priority
Needs evaluation

Plexis Archiver is a collection of Plexus components to create archives or extract archives to a directory with a unified `Archiver`/`UnArchiver` API. Prior to version 4.8.0, using AbstractUnArchiver for extracting an...

1 affected package

plexus-archiver

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
plexus-archiver Needs evaluation Needs evaluation Needs evaluation Needs evaluation
Show less packages

CVE-2018-1002200

Medium priority

Some fixes available 3 of 4

plexus-archiver before 3.6.0 is vulnerable to directory traversal, allowing attackers to write to arbitrary files via a ../ (dot dot slash) in an archive entry that is mishandled during extraction. This vulnerability is also known...

1 affected package

plexus-archiver

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
plexus-archiver Not affected Not affected Fixed
Show less packages