Количество 9
Количество 9
CVE-2020-28949
Archive_Tar through 1.4.10 has :// filename sanitization only to address phar attacks, and thus any other stream-wrapper attack (such as file:// to overwrite files) can still succeed.
CVE-2020-28949
Archive_Tar through 1.4.10 has :// filename sanitization only to address phar attacks, and thus any other stream-wrapper attack (such as file:// to overwrite files) can still succeed.
CVE-2020-28949
Archive_Tar through 1.4.10 has :// filename sanitization only to address phar attacks, and thus any other stream-wrapper attack (such as file:// to overwrite files) can still succeed.
CVE-2020-28949
Archive_Tar through 1.4.10 has :// filename sanitization only to addre ...
GHSA-75c5-f4gw-38r9
Multiple vulnerabilities through filename manipulation in Archive_Tar
BDU:2021-03618
Уязвимость класса Archive_Tar библиотеки PHP классов PEAR, позволяющая нарушителю выполнить перезапись защищаемых файлов
RLSA-2022:6542
Moderate: php:7.4 security update
ELSA-2022-7340
ELSA-2022-7340: php-pear security update (MODERATE)
ELSA-2022-6542
ELSA-2022-6542: php:7.4 security update (MODERATE)
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2020-28949 Archive_Tar through 1.4.10 has :// filename sanitization only to address phar attacks, and thus any other stream-wrapper attack (such as file:// to overwrite files) can still succeed. | CVSS3: 7.8 | 93% Критический | больше 4 лет назад |
 | CVE-2020-28949 Archive_Tar through 1.4.10 has :// filename sanitization only to address phar attacks, and thus any other stream-wrapper attack (such as file:// to overwrite files) can still succeed. | CVSS3: 7.1 | 93% Критический | больше 4 лет назад |
 | CVE-2020-28949 Archive_Tar through 1.4.10 has :// filename sanitization only to address phar attacks, and thus any other stream-wrapper attack (such as file:// to overwrite files) can still succeed. | CVSS3: 7.8 | 93% Критический | больше 4 лет назад |
| CVE-2020-28949 Archive_Tar through 1.4.10 has :// filename sanitization only to addre ... | CVSS3: 7.8 | 93% Критический | больше 4 лет назад |
| GHSA-75c5-f4gw-38r9 Multiple vulnerabilities through filename manipulation in Archive_Tar | CVSS3: 7.8 | 93% Критический | около 4 лет назад |
 | BDU:2021-03618 Уязвимость класса Archive_Tar библиотеки PHP классов PEAR, позволяющая нарушителю выполнить перезапись защищаемых файлов | CVSS3: 8.8 | 93% Критический | больше 4 лет назад |
 | RLSA-2022:6542 Moderate: php:7.4 security update | почти 3 года назад | ||
| ELSA-2022-7340 ELSA-2022-7340: php-pear security update (MODERATE) | больше 2 лет назад | ||
| ELSA-2022-6542 ELSA-2022-6542: php:7.4 security update (MODERATE) | почти 3 года назад |
Уязвимостей на страницу