GUI.pm in yarssr 0.2.2, when Gnome default URL handling is disabled, allows remote malicious users to execute arbitrary commands via shell metacharacters in a link element in a feed.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
yarssr yarssr 0.2.2 |