CVE-2026-40491 | wkentaro gdown up to 5.2.1 Archive extractall path traversal (GHSA-76hw-p97h-883f)

A vulnerability classified as critical has been found in wkentaro gdown up to 5.2.1. This impacts the function extractall of the component Archive Handler. This manipulation causes path traversal.

This vulnerability is tracked as CVE-2026-40491. The attack is possible to be carried out remotely. No exploit exists.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More