feh prior to 1.8, when the --wget-timestamp option is enabled, might allow remote malicious users to execute arbitrary commands via shell metacharacters in a URL.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
feh project feh 1.2.6 |
||
feh project feh 1.2.5 |
||
feh project feh 1.2.3 |
||
feh project feh 1.2.1 |
||
feh project feh 1.6 |
||
feh project feh 1.4.3 |
||
feh project feh 1.3.1 |
||
feh project feh 1.2.7 |
||
feh project feh 1.2.0 |
||
feh project feh 0.9.9 |
||
feh project feh 1.4.1 |
||
feh project feh 1.4 |
||
feh project feh 1.3.5 |
||
feh project feh |
||
feh project feh 0.6.4 |
||
feh project feh 0.5.0 |
||
feh project feh 1.6.1 |
||
feh project feh 1.5 |
||
feh project feh 1.4.2 |
||
feh project feh 1.3.3 |
||
feh project feh 1.3.0 |
||
feh project feh 1.1.0 |
||
feh project feh 0.7.0 |