security.nuyts.tech
CVE-2021-37701 – NuytsTech Security
The npm package "tar" (aka node-tar) before versions 4.4.16, 5.0.8, and 6.1.7 has an arbitrary file creation/overwrite and arbitrary code execution vu
