astral-tokio-tar: `unpack_in` can chmod arbitrary directories by following symlinks

Impact In versions 0.6.0 and earlier of astral-tokio-tar, the unpackin API could inadvertently modify the permissions of external i.e. non-archive directories outside of the archive. An attacker could use this to contrite a tar archive that maliciously changes directory permissions outside of its...

GHSA-XX64-WWV2-HCQQ astral-tokio-tar: `unpack_in` can chmod arbitrary directories by following symlinks

Impact In versions 0.6.0 and earlier of astral-tokio-tar, the unpackin API could inadvertently modify the permissions of external i.e. non-archive directories outside of the archive. An attacker could use this to contrite a tar archive that maliciously changes directory permissions outside of its...

RUSTSEC-2026-0113 `unpack_in` can chmod arbitrary directories by following symlinks

In versions 0.6.0 and earlier of astral-tokio-tar, the unpackin API could inadvertently modify the permissions of external i.e. non-archive directories outside of the archive. An attacker could use this to contrite a tar archive that maliciously changes directory permissions outside of its intend...

`unpack_in` can chmod arbitrary directories by following symlinks

In versions 0.6.0 and earlier of astral-tokio-tar, the unpackin API could inadvertently modify the permissions of external i.e. non-archive directories outside of the archive. An attacker could use this to contrite a tar archive that maliciously changes directory permissions outside of its intend...

CVE-2026-33194 SiYuan has an Incomplete Fix for IsSensitivePath Denylist Allows File Read from /opt, /usr, /home

SiYuan is a personal knowledge management system. Prior to version 3.6.2, the IsSensitivePath function in kernel/util/path.go uses a denylist approach that was recently expanded GHSA-h5vh-m7fg-w5h6, commit 9914fd1 but remains incomplete. Multiple security-relevant Linux directories are not blocke...

EUVD-2026-13616

tar-rs unpackin can chmod arbitrary directories by following symlinks...

The vulnerability of the M-Files Server platform, which is related to the use of files and directories accessible to external parties, allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the M-Files Server platform for document automation involves the use of files and directories accessible to external parties. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain unauthorized access to protected information...

The vulnerability of the file renaming function of the ASUSTOR Data Master operating system allows a hacker to move any files they desire.

The vulnerability of the file renaming function of the ASUSTOR Data Master operating system involves the use of files and directories accessible from external parties. Exploiting this vulnerability could allow a hacker to move arbitrary files...

ASB-A-228450832

In extractRelativePath of FileUtils.java, there is a possible way to access files in a directory belonging to other applications due to a path traversal error. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...

The vulnerability of the RoundCube Webmail email client, related to the use of files and directories accessible from external parties, allows a hacker to gain unauthorized access to arbitrary files in the host’s file system.

The vulnerability of the RoundCube Webmail email client stems from the use of files and directories accessible from external parties. Exploiting this vulnerability could allow an attacker to gain unauthorized access to arbitrary files in the host’s file system, including configuration files...

Jenkins 后置链接漏洞

Jenkins is a Jenkins open source application . An open source automation server Jenkins provides hundreds of plugins to support building, deploying and automating any project. Jenkins suffers from a backlink vulnerability that stems from an unnormalized path in the file path filter in the...

The vulnerability of the Cisco IOS XE SD-WAN software’s command-line interface allows attackers to compromise the integrity of protected information.

The vulnerability of the Cisco IOS XE SD-WAN software’s command-line interface relates to the use of files and directories accessible from external parties. Exploiting this vulnerability could allow a attacker to compromise the integrity of the protected information...

The vulnerability of the Bundler’s package manager in Ruby projects allows attackers to execute arbitrary code by exploiting the use of files and directories accessible from external sources.

The vulnerability of the Bundler’s package manager in Ruby projects relates to the use of files and directories accessible from external sources. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

WordPress 10Web Photo Gallery Plugin Path Traversal Vulnerability

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports setting up personal blog sites on PHP and MySQL servers.10Web Photo Gallery plugin is an image management plugin used in it. A path traversal vulnerability exists in the WordPress...