The tmp package for Node.js, version 0.2.6, is vulnerable to a directory traversal attack. The _assertPath guard in tmp rejects string values containing the substring '..', but can be bypassed when prefix, postfix, or template is supplied as a non-string value (Array, Buffer, or object) whose stringification still contains '../'. This allows attackers to create files or directories at arbitrary locations [truncated]
CVE-2026-44705 is a path traversal vulnerability in the tmp npm package, which allows attackers to create files outside the intended temporary directory. This HIGH severity vulnerability has a CVSS score of 7.7 and was published on 2026-06-11T17:16:33.853Z. The vulnerability affects applications that pass user-controlled data to tmp's file/directory creation functions without proper input sanitization. Th [truncated]
