PT-2022-17642 · Unknown · Com.Diffplug.Gradle:Goomph
Name of the Vulnerable Software and Affected Versions: com.diffplug.gradle:goomph versions prior to 3.37.2 Description: This issue allows a malicious zip file to potentially break out of the expected destination directory, writing contents into arbitrary locations on the file system. Overwriting...