0.2.7
14 years ago
1 months ago
Known vulnerabilities in the tmp package. This does not include vulnerabilities belonging to this package’s dependencies.
Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.
Fix for free| Vulnerability | Vulnerable Version |
|---|---|
Affected versions of this package are vulnerable to Directory Traversal due to the improper sanitization of non-string values in the Note: This issue is due to an incomplete fix for CVE-2026-44705. Added How to fix Directory Traversal? Upgrade | <0.2.7 |
Affected versions of this package are vulnerable to Directory Traversal via unsanitized input in the Note: The fix for this issue was incomplete and led to a bypass, known as CVE-2026-49982. Users are recommended to upgrade to version 0.2.7 to get a complete fix for this issue. How to fix Directory Traversal? Upgrade | <0.2.6 |
Affected versions of this package are vulnerable to Symlink Attack via the How to fix Symlink Attack? Upgrade | <0.2.4 |