Affected Products
| Vendor | Product | Versions |
|---|---|---|
| github.com | codeclysm/extract/v4 | 0, 0 |
| github.com | codeclysm/extract | 0, 0 |
| github.com | codeclysm/extract/v3 | 0, 0 |
Timeline
- Oct 15, 2024 CVE Published
- Mar 3, 2026 CVE Updated
- May 1, 2026 Security Advisory
Extract has insufficient checks allowing attacker to create symlinks outside the extraction directory. in github.com/codeclysm/extract
| Vendor | Product | Versions |
|---|---|---|
| github.com | codeclysm/extract/v4 | 0, 0 |
| github.com | codeclysm/extract | 0, 0 |
| github.com | codeclysm/extract/v3 | 0, 0 |