Insecure Temporary File #80
Description
Line 2005 in a35a8f5
Line 2117 in a35a8f5
Good afternoon.
I noticed in your code that the file is being generated, the filename is predictable and you are not setting the file permissions.
this can be used to influence other files on the system (via temporary links) with the right to run your program.
if it's important you need to use mkstemp or mkdtemp.