CVE-2012-5534

EPSS 2.0%

發布日:2012/12/3修改日:2026/4/28

描述

The hook_process function in the plugin API for WeeChat 0.3.0 through 0.3.9.1 allows remote attackers to execute arbitrary commands via shell metacharacters in a command from a plugin, related to "shell expansion."

受影響套件(1)

Debian/weechatfrom 0, < 0.3.9.2-1

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2012-5534