CVEs from 2026
Total
13,492
critical
critical 1,178
high
high 4,301
medium
medium 4,183
low
low 449
% Critical
8.7%
% with KEV
0.4%
% with exploit
0.8%
Top products
- chrome 417
- firepower_threat_defense 298
- firepower_threat_defense_software 295
- gcp 229
- openclaw 166
- commerce 104
- commerce_b2b 89
- magento 74
Top packages
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-22675 | medium | 6.1 | 6.1 | 2mo ago | OCS Inventory NG Server version 2.12.3 and prior contain a stored cross-site scripting vulnerability that allows unauthenticated attackers to execute arbitrary JavaScript by submitting malicious User… | |||
| CVE-2026-5467 | medium | 6.1 | 6.1 | 2mo ago | Casdoor vulnerable to Open Redirect | |||
| CVE-2026-5332 | medium | 6.1 | 6.1 | 2mo ago | A vulnerability was identified in Xiaopi Panel 1.0.0. This vulnerability affects unknown code of the file /demo.php of the component WAF Firewall. The manipulation of the argument param leads to cros… | |||
| CVE-2026-30526 | medium | 6.1 | 6.1 | 2mo ago | A Reflected Cross-Site Scripting (XSS) vulnerability exists in SourceCodester Zoo Management System v1.0. The vulnerability is located in the login page, specifically within the msg parameter. The ap… | |||
| CVE-2026-5255 | medium | 6.1 | 6.1 | 2mo ago | A vulnerability was detected in code-projects Simple Laundry System 1.0. This affects an unknown part of the file /delstaffinfo.php of the component Parameter Handler. The manipulation of the argumen… | |||
| CVE-2026-30567 | medium | 6.1 | 6.1 | 2mo ago | A Reflected Cross-Site Scripting (XSS) vulnerability exists in SourceCodester Sales and Inventory System 1.0 in the view_product.php file via the "limit" parameter. The application fails to sanitize … | |||
| CVE-2026-29969 | medium | 6.1 | 6.1 | 2mo ago | A cross-site scripting (XSS) vulnerability in the wff_cols_pref.css.aspx endpoint of staffwiki v7.0.1.19219 allows attackers to execute arbitrary Javascript in the context of the user's browser via a… | |||
| CVE-2026-34071 | medium | 6.1 | 6.1 | 2mo ago | Stirling-PDF is a locally hosted web application that allows you to perform various operations on PDF files. In version 2.7.3, the /api/v1/convert/eml/pdf endpoint with parameter downloadHtml=true re… | |||
| CVE-2026-33397 | medium | 6.1 | 6.1 | 2mo ago | Protocol-Relative URL Injection via Single Backslash Bypass in Angular SSR | |||
| CVE-2026-29934 | medium | 6.1 | 6.1 | 2mo ago | A reflected cross-site scripting (XSS) vulnerability in the /admin/menus component of Lightcms v2.0 allows attackers to execute arbitrary Javascript in the context of the user's browser via modifying… | |||
| CVE-2026-4849 | medium | 6.1 | 6.1 | 2mo ago | A vulnerability was identified in code-projects Simple Laundry System 1.0. This impacts an unknown function of the file /modify.php of the component Parameter Handler. The manipulation of the argumen… | |||
| CVE-2026-32851 | medium | 6.1 | 6.1 | 2mo ago | MailEnable versions prior to 10.55 contain a reflected cross-site scripting vulnerability in the webmail interface that allows remote attackers to execute arbitrary JavaScript in a victim's browser b… | |||
| CVE-2026-4474 | medium | 6.1 | 6.1 | 2mo ago | A flaw has been found in itsourcecode University Management System 1.0. Impacted is an unknown function of the file /admin_single_student_update.php. This manipulation of the argument st_name causes … | |||
| CVE-2026-22217 | medium | 6.1 | 6.1 | 3mo ago | OpenClaw: shell-env trusted-prefix fallback allowed attacker-controlled binary execution via $SHELL | |||
| CVE-2026-20994 | medium | 6.1 | 6.1 | 3mo ago | URL redirection in Samsung Account prior to version 15.5.01.1 allows local attackers to potentially get access token. | |||
| CVE-2026-3884 | medium | 6.1 | 6.1 | 3mo ago | Versions of the package spin.js before 3.0.0 are vulnerable to Cross-site Scripting (XSS) via the spin() function that allows a creation of more than 1 alert for each 'target' element. An attacker wo… | |||
| CVE-2026-23817 | medium | 6.1 | 6.1 | 3mo ago | A vulnerability in the web-based management interface of AOS-CX Switches could allow an unauthenticated remote attacker to redirect users to an arbitrary URL. | |||
| CVE-2026-22614 | medium | 6.1 | 6.1 | 3mo ago | The encryption mechanism used in Eaton's EasySoft project file was insecure and susceptible to brute force attacks, an attacker with access to this file and the local host machine could potentially r… | |||
| CVE-2026-3812 | medium | 6.1 | 6.1 | 3mo ago | A vulnerability was determined in itsourcecode Payroll Management System 1.0. Affected is an unknown function of the file /manage_employee_allowances.php. This manipulation of the argument ID causes … | |||
| CVE-2026-3763 | medium | 6.1 | 6.1 | 3mo ago | A vulnerability was found in code-projects Simple Flight Ticket Booking System 1.0. The affected element is an unknown function of the file showhistory.php. The manipulation results in cross site scr… | |||
| CVE-2026-3702 | medium | 6.1 | 6.1 | 3mo ago | A vulnerability was detected in SourceCodester Loan Management System 1.0. Affected by this issue is some unknown functionality of the file /index.php. Performing a manipulation of the argument page … | |||
| CVE-2026-20070 | medium | 6.1 | 6.1 | 3mo ago | A vulnerability in the VPN web services component of Cisco Secure Firewall Adaptive Security Appliance (ASA) Software and Cisco Secure Firewall Threat Defense (FTD) Software could allow an unauthenti… | |||
| CVE-2026-3455 | medium | 6.1 | 6.1 | 3mo ago | mailparser vulnerable to Cross-site Scripting | |||
| CVE-2026-3412 | medium | 6.1 | 6.1 | 3mo ago | A vulnerability was detected in itsourcecode University Management System 1.0. This affects an unknown part of the file /att_single_view.php. The manipulation of the argument dt results in cross site… | |||
| CVE-2026-3302 | medium | 6.1 | 6.1 | 3mo ago | A weakness has been identified in SourceCodester Doctor Appointment System 1.0. Affected by this issue is some unknown functionality of the file /register.php of the component Sign Up Page. Executing… | |||
| CVE-2026-3070 | medium | 6.1 | 6.1 | 3mo ago | A vulnerability was detected in SourceCodester Modern Image Gallery App 1.0. Affected by this vulnerability is an unknown functionality of the file upload.php. The manipulation of the argument filena… | |||
| CVE-2026-3054 | medium | 6.1 | 6.1 | 3mo ago | A vulnerability was identified in Alinto SOGo 5.12.3/5.12.4. This impacts an unknown function. The manipulation of the argument hint leads to cross site scripting. The attack can be initiated remotel… | |||
| CVE-2026-3049 | medium | 6.1 | 6.1 | 3mo ago | A vulnerability was detected in horilla-opensource horilla up to 1.0.2. This issue affects the function get of the file horilla_generics/global_search.py of the component Query Parameter Handler. The… | |||
| CVE-2026-3043 | medium | 6.1 | 6.1 | 3mo ago | A flaw has been found in itsourcecode Event Management System 1.0. The impacted element is an unknown function of the file /admin/navbar.php. Executing a manipulation of the argument page can lead to… | |||
| CVE-2026-3028 | medium | 6.1 | 6.1 | 3mo ago | A vulnerability was determined in erzhongxmu JEEWMS up to 3.7. This vulnerability affects the function doAdd of the file src/main/java/com/jeecg/demo/controller/JeecgListDemoController.java. This man… | |||
| CVE-2026-3027 | medium | 6.1 | 6.1 | 3mo ago | A vulnerability was found in erzhongxmu JEEWMS up to 3.7. This affects an unknown part of the file src/main/webapp/plug-in/ueditor/jsp/getContent.jsp of the component UEditor. The manipulation of the… | |||
| CVE-2026-2971 | medium | 6.1 | 6.1 | 3mo ago | A vulnerability was found in a466350665 Smart-SSO up to 2.1.1. Affected by this issue is some unknown functionality of the file smart-sso-server/src/main/resources/templates/login.html of the compone… | |||
| CVE-2026-2547 | medium | 6.1 | 6.1 | 4mo ago | A vulnerability was detected in LigeroSmart up to 6.1.26. The impacted element is the function AgentDashboard of the file /otrs/index.pl. Performing a manipulation of the argument Subaction results i… | |||
| CVE-2026-2546 | medium | 6.1 | 6.1 | 4mo ago | A security vulnerability has been detected in LigeroSmart up to 6.1.26. The affected element is an unknown function of the file /otrs/index.pl. Such manipulation of the argument SortBy leads to cross… | |||
| CVE-2026-2545 | medium | 6.1 | 6.1 | 4mo ago | A weakness has been identified in LigeroSmart up to 6.1.26. Impacted is an unknown function of the file /otrs/index.pl?Action=AgentTicketSearch. This manipulation of the argument Profile causes cross… | |||
| CVE-2026-2242 | medium | 6.1 | 6.1 | 4mo ago | A vulnerability was determined in janet-lang janet up to 1.40.1. This impacts the function janetc_if of the file src/core/specials.c. Executing a manipulation can lead to out-of-bounds read. The atta… | |||
| CVE-2026-2241 | medium | 6.1 | 6.1 | 4mo ago | A vulnerability was found in janet-lang janet up to 1.40.1. This affects the function os_strftime of the file src/core/os.c. Performing a manipulation results in out-of-bounds read. The attack must b… | |||
| CVE-2026-2240 | medium | 6.1 | 6.1 | 4mo ago | A vulnerability has been found in janet-lang janet up to 1.40.1. The impacted element is the function janetc_pop_funcdef of the file src/core/compile.c. Such manipulation leads to out-of-bounds read.… | |||
| CVE-2026-2160 | medium | 6.1 | 6.1 | 4mo ago | A vulnerability has been found in SourceCodester Simple Responsive Tourism Website 1.0. Affected by this vulnerability is an unknown functionality of the file /tourism/classes/Master.php?f=save_packa… | |||
| CVE-2026-2159 | medium | 6.1 | 6.1 | 4mo ago | A flaw has been found in SourceCodester Simple Responsive Tourism Website 1.0. Affected is an unknown function of the file /tourism/classes/Master.php?f=register of the component Registration. Execut… | |||
| CVE-2026-2154 | medium | 6.1 | 6.1 | 4mo ago | A vulnerability was identified in SourceCodester/Patrick Mvuma Patients Waiting Area Queue Management System 1.0. Impacted is an unknown function of the file /registration.php of the component Patien… | |||
| CVE-2026-2153 | medium | 6.1 | 6.1 | 4mo ago | A vulnerability was determined in mwielgoszewski doorman up to 0.6. This issue affects the function is_safe_url of the file doorman/users/views.py. Executing a manipulation of the argument Next can l… | |||
| CVE-2026-2150 | medium | 6.1 | 6.1 | 4mo ago | A flaw has been found in SourceCodester/Patrick Mvuma Patients Waiting Area Queue Management System 1.0. Affected by this issue is some unknown functionality of the file /checkin.php. This manipulati… | |||
| CVE-2026-2149 | medium | 6.1 | 6.1 | 4mo ago | A vulnerability was detected in SourceCodester/Patrick Mvuma Patients Waiting Area Queue Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /appointments.ph… | |||
| CVE-2026-1970 | medium | 6.1 | 6.1 | 4mo ago | A flaw has been found in Edimax BR-6258n up to 1.18. This issue affects the function formStaDrvSetup of the file /goform/formStaDrvSetup. This manipulation of the argument submit-url causes open redi… | |||
| CVE-2026-1411 | medium | 6.1 | 6.1 | 4mo ago | A flaw has been found in Beetel 777VR1 up to 01.00.09/01.00.09_55. The affected element is an unknown function of the component UART Interface. This manipulation causes improper access controls. It i… | |||
| CVE-2026-21933 | medium | 6.1 | 6.1 | 4mo ago | RHSA-2026:4832: java-1.8.0-ibm security update (Important) | |||
| CVE-2026-1135 | medium | 6.1 | 6.1 | 4mo ago | A security flaw has been discovered in itsourcecode Society Management System 1.0. This impacts an unknown function of the file /admin/activity.php. The manipulation of the argument Title results in … | |||
| CVE-2026-1134 | medium | 6.1 | 6.1 | 4mo ago | A vulnerability was identified in itsourcecode Society Management System 1.0. This affects an unknown function of the file /admin/expenses.php. The manipulation of the argument detail leads to cross … | |||
| CVE-2026-0858 | medium | 6.1 | 6.1 | 5mo ago | PlantUML is vulnerable to Stored XSS due to insufficient sanitization of interactive attributes in GraphViz diagrams | |||
| CVE-2026-0642 | medium | 6.1 | 6.1 | 5mo ago | A vulnerability was detected in projectworlds House Rental and Property Listing 1.0. This issue affects some unknown processing of the file /app/complaint.php. The manipulation of the argument Name r… | |||
| CVE-2026-0588 | medium | 6.1 | 6.1 | 5mo ago | A weakness has been identified in Xinhu Rainrock RockOA up to 2.7.1. Affected by this vulnerability is an unknown functionality of the file rockfun.php of the component API. This manipulation of the … | |||
| CVE-2026-0586 | medium | 6.1 | 6.1 | 5mo ago | A vulnerability was detected in code-projects Online Product Reservation System 1.0. The affected element is an unknown function of the file handgunner-administrator/prod.php. Performing a manipulati… | |||
| CVE-2026-0580 | medium | 6.1 | 6.1 | 5mo ago | A vulnerability was found in SourceCodester API Key Manager App 1.0. Affected by this vulnerability is an unknown functionality of the component Import Key Handler. Performing a manipulation results … | |||
| CVE-2026-44394 | medium | 6.0 | 6.0 | 3d ago | An issue was discovered in OpenStack Keystone before 29.0.2. The Keystone federated token rescoping mechanism does not propagate the original token's expiry to the newly issued token. When a federate… | |||
| CVE-2026-43000 | medium | 6.0 | 6.0 | 3d ago | An issue was discovered in OpenStack Keystone before 29.0.2. When combined with an application credential impersonation vulnerability, an attacker with the member role on a project can escalate to ad… | |||
| CVE-2026-42999 | medium | 6.0 | 6.0 | 3d ago | An issue was discovered in OpenStack Keystone before 29.0.2. The Keystone RBAC policy enforcer in enforce_call unconditionally merges the raw JSON request body into the policy enforcement dictionary … | |||
| CVE-2026-42998 | medium | 6.0 | 6.0 | 3d ago | An issue was discovered in OpenStack Keystone before 29.0.2. The Keystone application credential authentication plugin does not verify that the user supplied in the authentication request matches the… | |||
| CVE-2026-0857 | medium | 6.0 | 6.0 | 12d ago | Cleartext Storage of Sensitive Information in Memory vulnerability in Mesalvo Meona Client Launcher Component, Mesalvo Meona Server Component. This issue affects Meona Client Launcher Component: thr… | |||
| CVE-2026-8052 | medium | 6.0 | 6.0 | 19d ago | HashiCorp Nomad’s exec2 task driver vulnerable to a symlink attack | |||
| CVE-2026-6959 | medium | 6.0 | 6.0 | 19d ago | HashiCorp Nomad vulnerable to symlink attack | |||
| CVE-2026-41125 | medium | 6.0 | 6.0 | 20d ago | A vulnerability has been identified in blueplanet 100 NX3 M8 (All versions), blueplanet 100 TL3 GEN2 (All versions), blueplanet 105 TL3 (All versions), blueplanet 105 TL3 GEN2 (All versions), bluepla… | |||
| CVE-2026-45005 | medium | 6.0 | 6.0 | 20d ago | OpenClaw's Webhooks SecretRef route secret remains valid after rotation/reload | |||
| CVE-2026-41689 | medium | 6.0 | 6.0 | 25d ago | Wallos is an open-source, self-hostable personal subscription tracker. In versions 4.8.4 and prior, the webhook notification feature reuses an administrator-configured local-target allowlist for ever… | |||
| CVE-2026-47741 | medium | 5.9 | 5.9 | 2d ago | Shopper is a Headless e-commerce Admin Panel. Prior to 2.8.0, CreateOrderFromCartAction::execute previously created the Order row before checking and incrementing the discount's total_use counter. Un… | |||
| CVE-2026-9793 | medium | 5.9 | 5.9 | 4d ago | A flaw was found in Keycloak. When a JSON Web Encryption (JWE) encrypted request object is submitted, Keycloak may incorrectly process unsigned claims if the decrypted content is raw JSON, bypassing … | |||
| CVE-2026-46538 | medium | 5.9 | 5.9 | 4d ago | Microsoft UFO open-source framework for intelligent automation across devices and platforms. In 3.0.1-4-ge2626659, Microsoft UFO's constellation client tracks pending task responses by session_id onl… | |||
| CVE-2026-45027 | medium | 5.9 | 5.9 | 5d ago | WeGIA is a web manager for charitable institutions. In versions prior to 3.7.3, when a user logs in, html/login.php hashes the submitted password using PHP's hash() function with the SHA-256 algorith… | |||
| CVE-2026-44788 | medium | 5.9 | 5.9 | 5d ago | SharpCompress is a fully managed C# library to deal with many compression types and formats. In 0.47.4 and earlier, a path traversal vulnerability in IArchive.WriteToDirectory() allows a malicious ar… | |||
| CVE-2026-48850 | medium | 5.9 | 5.9 | 6d ago | PuTTY 0.72 before 0.84 has a double free in RSA KEX. | |||
| CVE-2026-42626 | medium | 5.9 | 5.9 | 9d ago | HP ENVY 5000 series printers VERBASPP1N003.2237A.00 do not properly manage concurrent TCP connections to port 9100 (JetDirect/RAW printing). An unauthenticated remote attacker on the same network can… | |||
| CVE-2026-8673 | medium | 5.9 | 5.9 | 10d ago | Unprotected transport of credentials vulnerability in syslink software AG Avantra on Linux, Windows allows Sniffing Attacks. This issue affects Avantra: before 25.3.0. | |||
| CVE-2026-48249 | medium | 5.9 | 5.9 | 10d ago | Open ISES Tickets before 3.44.2 disables TLS certificate verification in rm/incs/mobile_login.inc.php by setting CURLOPT_SSL_VERIFYPEER to false (and not setting CURLOPT_SSL_VERIFYHOST) when issuing … | |||
| CVE-2026-48248 | medium | 5.9 | 5.9 | 10d ago | Open ISES Tickets before 3.44.2 disables TLS certificate verification in incs/login.inc.php by setting CURLOPT_SSL_VERIFYPEER to false (and not setting CURLOPT_SSL_VERIFYHOST) when issuing outbound H… | |||
| CVE-2026-48247 | medium | 5.9 | 5.9 | 10d ago | Open ISES Tickets before 3.44.2 disables TLS certificate verification in incs/functions.inc.php by setting CURLOPT_SSL_VERIFYPEER to false (and not setting CURLOPT_SSL_VERIFYHOST) when issuing outbou… | |||
| CVE-2026-48246 | medium | 5.9 | 5.9 | 10d ago | Open ISES Tickets before 3.44.2 disables TLS certificate verification in ajax/reports.php by setting CURLOPT_SSL_VERIFYPEER to false (and not setting CURLOPT_SSL_VERIFYHOST) when issuing outbound HTT… | |||
| CVE-2026-44061 | medium | 5.9 | 5.9 | 11d ago | Netatalk 1.5.0 through 4.4.2 uses DES-ECB for authentication with a timing side channel, which allows a remote attacker to recover authentication credentials via timing analysis. | |||
| CVE-2026-9100 | medium | 5.9 | 5.9 | 11d ago | The MongoDB C Driver's legacy GridFS API accepts malformed file metadata from the database without adequate validation. Crafted documents in a GridFS collection may cause any application that reads t… | |||
| CVE-2026-5947 | medium | 5.9 | 5.9 | 12d ago | Undefined behavior may result due to a race condition leading to a use-after-free violation. If BIND receives an incoming DNS message signed with SIG(0), it begins work to validate that signature. … | |||
| CVE-2026-44608 | medium | 5.9 | 5.9 | 12d ago | NLnet Labs Unbound 1.14.0 up to and including version 1.25.0 has a locking inconsistency vulnerability that when certain conditions are met (multi-threaded, RPZ XFR reload, RPZ zone with 'rpz-nsip'/'… | |||
| CVE-2026-41470 | medium | 5.9 | 5.9 | 12d ago | LIVE555 before 2026.04.22 contains an authorization bypass vulnerability in RTSP session command handling that allows attackers to replay valid Session tokens from unauthenticated connections. Attack… | |||
| CVE-2026-32134 | medium | 5.9 | 5.9 | 12d ago | NanoMQ MQTT Broker (NanoMQ) is an all-around Edge Messaging Platform. In versions 0.24.10 and below, when NanoMQ handles high-concurrency reconnect traffic using a reconnect-collision payload, the br… | |||
| CVE-2026-40356 | medium | 5.9 | 5.9 | 13d ago | RHSA-2026:16799: krb5 security update (Important) | |||
| CVE-2026-40355 | medium | 5.9 | 5.9 | 13d ago | RHSA-2026:16799: krb5 security update (Important) | |||
| CVE-2026-41968 | medium | 5.9 | 5.9 | 17d ago | Permission control vulnerability in the manufacturability design module. Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2026-41967 | medium | 5.9 | 5.9 | 17d ago | Permission control vulnerability in the manufacturability design module. Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2026-41961 | medium | 5.9 | 5.9 | 17d ago | Permission control vulnerability in contacts. Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2026-6811 | medium | 5.9 | 5.9 | 17d ago | Stack exhaustion vulnerability in the MongoDB PHP driver can cause application crashes when processing deeply nested BSON documents in unusual circumstances when the source of these BSON documents is… | |||
| CVE-2026-42597 | medium | 5.9 | 5.9 | 18d ago | Gotenberg allows Chromium URL conversion routes to read arbitrary files under /tmp via file:// scheme | |||
| CVE-2026-33381 | medium | 5.9 | 5.9 | 18d ago | When a user's access to mint tokens for a service account is revoked, it is sometimes still possible to do so for a few seconds after the event. The user will eventually lose access to do this. | |||
| CVE-2026-44577 | medium | 5.9 | 5.9 | 18d ago | Next.js has a Denial of Service in the Image Optimization API | |||
| CVE-2026-44572 | medium | 5.9 | 5.9 | 19d ago | Next.js's Middleware / Proxy redirects can be cache-poisoned | |||
| CVE-2026-6253 | medium | 5.9 | 5.9 | 19d ago | curl might erroneously pass on credentials for a first proxy to a second proxy. This can happen when the following conditions are true: 1. curl is setup to use specific different proxies for differ… | |||
| CVE-2026-4873 | medium | 5.9 | 5.9 | 19d ago | A vulnerability exists where a connection requiring TLS incorrectly reuses an existing unencrypted connection from the same connection pool. If an initial transfer is made in clear-text (via IMAP, SM… | |||
| CVE-2026-42545 | medium | 5.9 | 5.9 | 19d ago | Granian vulnerable to DoS via WSGI response header panic | |||
| CVE-2026-43930 | medium | 5.9 | 5.9 | 20d ago | parse-server: MFA SMS one-time password accepted twice under concurrent login | |||
| CVE-2026-8261 | medium | 5.9 | 5.9 | 21d ago | A vulnerability was determined in Squirrel up to 3.2. This affects the function SQFunctionProto::Load of the file squirrel/sqobject.cpp. This manipulation causes heap-based buffer overflow. The attac… | |||
| CVE-2026-44837 | medium | 5.9 | 5.9 | 24d ago | view_component is a framework for building reusable, testable, and encapsulated view components in Ruby on Rails. From 3.0.0 to 4.9.0, the system test entrypoint canonicalizes a user-controlled file … | |||
| CVE-2026-42225 | medium | 5.9 | 5.9 | 24d ago | PJSIP is a free and open source multimedia communication library written in C. Prior to version 2.17, on GnuTLS builds, the SIP TLS transport (sip_transport_tls) can accept connections with invalid o… | |||
| CVE-2026-39817 | medium | 5.9 | 5.9 | 24d ago | The "go tool pack" subcommand (usually used only by the compiler as an internal tool with known-good inputs) does not sanitize output filenames. Extracting a malicious archive file with the "pack" su… |