CVE-2026-53486 - decompress: Archive extraction can create files and links outside the target directory
CVE ID :CVE-2026-53486 Published : July 14, 2026, 9:17 p.m. | 1 hour, 17 minutes ago Description :The decompress package for Node.js extracts archives. Prior to 10.2.1 and 11.1.3, archive extraction can create files and links outside the target directory. When extracting an archive to a...