GO-2022-0787 Symbolic links in an unpacking routine may enable attackers to read and/or write to arbitrary locations in dbdeployer in github.com/datacharmer/dbdeployer

Symbolic links in an unpacking routine may enable attackers to read and/or write to arbitrary locations in dbdeployer in github.com/datacharmer/dbdeployer...

Datacharmer Dbdeployer Backlink Vulnerability

Datacharmer Dbdeployer is a Go language based software for efficient deployment of Mysql databases by the individual developer Datacharmer. A security vulnerability exists in DBdeployer versions prior to 1.58.2, which stems from the possibility that a user unpacking a tarball could use a...