github.com/gen2brain/go-unarr is vulnerable to path traversal. The vulnerability exists because it does not check the contents of the archive, allowing an attacker to use ../
in a pathname within a TAR archive.By triggering the path traversal vulnerability, an attacker can store any file in any privileged place
CPE | Name | Operator | Version |
---|---|---|---|
github.com/gen2brain/go-unarr | le | v0.1.1 | |
github.com/gen2brain/go-unarr | le | v0.1.1 |