CVE-2018-1002207

Name of the Vulnerable Software and Affected Versions: mholt/archiver versions before e4ef56d48eb029648b0e895bb0b6a393ef0829c3

Description: The issue allows attackers to write to arbitrary files via a ../ (dot dot slash) in an archive entry that is mishandled during extraction, also known as 'Zip-Slip'. This can occur when extracting archives, potentially leading to unauthorized file modifications.

Recommendations: For versions before e4ef56d48eb029648b0e895bb0b6a393ef0829c3, update to a version that includes the fix for this issue to prevent arbitrary file writes during archive extraction.