Archive_Tar through 1.4.10 has ://... CVE-2020-28949

- AV AC AU C I A
发布: 2020-11-19
修订: 2020-11-26

Archive_Tar through 1.4.10 has :// filename sanitization only to address phar attacks, and thus any other stream-wrapper attack (such as file:// to overwrite files) can still succeed.

0%
暂无可用Exp或PoC
产品及版本信息(CPE)暂不可用