CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 1CVE-2023-47104
https://notcve.org/view.php?id=CVE-2023-47104
30 Oct 2023 — tinyfiledialogs (aka tiny file dialogs) before 3.15.0 allows shell metacharacters (such as a backquote or a dollar sign) in titles, messages, and other input data. NOTE: this issue exists because of an incomplete fix for CVE-2020-36767, which only considered single and double quote characters. tinyfiledialogs (también conocido como diálogos de archivos pequeños) anteriores a 3.15.0 permite metacaracteres de shell (como comillas invertidas o un signo de dólar) en títulos, mensajes y otros datos de entrada. N... • https://github.com/servo/servo/issues/25498#issuecomment-703527082 • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •