pkg:maven/com.diffplug.gradle/goomph
Type
maven
Namespace
com.diffplug.gradle
Name
goomph
Known advisories, vulnerabilities and fixes for com.diffplug.gradle/goomph package.
High
1
Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
---|---|---|---|---|---|---|---|
Affected | < 3.37.2 |
CVE-2022-26049
|
MAVEN:GHSA-P2F7-9CV7-JJF6 | Goomph before 3.37.2 allows malicious zip file to write contents to arbitrary locations | high |
2022-09-12T00:00:33
(2 years ago) |
|
Fixed | = 3.37.2 |
CVE-2022-26049
|
MAVEN:GHSA-P2F7-9CV7-JJF6 | Goomph before 3.37.2 allows malicious zip file to write contents to arbitrary locations | high |
2022-09-12T00:00:33
(2 years ago) |