Kasimir Schulz (Abraxus7331)

1 exploit Active since Aug 2007
CVE-2007-4559 NOMISEC CRITICAL SCANNER
Python < 3.6.16 - Path Traversal via Tarfile Extract Functions
Directory traversal vulnerability in the (1) extract and (2) extractall functions in the tarfile module in Python allows user-assisted remote attackers to overwrite arbitrary files via a .. (dot dot) sequence in filenames in a TAR archive, a related issue to CVE-2001-1267.
82 stars
CVSS 9.8