← Back to CVE List
CVE-2015-8860
Published:
2017-01-23T21:59Z
Last Modified:
2024-11-21T02:39Z
Source:
MITRE CVE List
License:
MITRE-CVE-TOS
The tar package before 2.0.0 for Node.js allows remote attackers to write to arbitrary files via a symlink attack in an archive. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt