Package impact
npm / tmp
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-44705 | high | — | 8.0 | 3d ago | tmp has Path Traversal via unsanitized prefix/postfix that enables directory escape | |||
| CVE-2025-54798 | unknown | — | — | 10mo ago | tmp is a temporary file and directory creator for node.js. In versions 0.2.3 and below, tmp is vulnerable to an arbitrary temporary file / directory write via symbolic link dir parameter. This is fix… |