| CVE-2020-28949 |
medium |
— |
8.0 |
|
|
|
6y ago |
PEAR Archive_Tar allows an unserialization attack because phar: is blocked but PHAR: is not blocked. PEAR stands for PHP Extension and Application Repository and it is an open-source framework and di… |
| CVE-2020-36193 |
medium |
— |
7.0 |
|
|
|
5y ago |
PEAR Archive_Tar Tar.php allows write operations with directory traversal due to inadequate checking of symbolic links. PEAR stands for PHP Extension and Application Repository and it is an open-sour… |
| CVE-2021-32610 |
medium |
— |
5.5 |
|
|
|
5y ago |
RHSA-2022:7628: php:7.4 security, bug fix, and enhancement update (Moderate) |
| CVE-2020-28948 |
medium |
— |
5.5 |
|
|
|
6y ago |
RHSA-2022:6542: php:7.4 security update (Moderate) |
| CVE-2018-1000888 |
unknown |
— |
1.0 |
|
|
|
3y ago |
PEAR Archive_Tar version 1.4.3 and earlier contains a CWE-502, CWE-915 vulnerability in the Archive_Tar class. There are several file operations with `$v_header['filename']` as parameter (such as fil… |
| CVE-2006-0931 |
unknown |
— |
— |
|
|
|
4y ago |
PEAR::Archive_Tar Directory Traversal vulnerability |
