Improper Neutralization of Special Elements used in an OS Command in bookmarking function of Newsbeuter versions 0.7 through 2.9 allows remote attackers to perform user-assisted code execution by crafting an RSS item that includes shell code in its title and/or URL.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Alpine | 3.3-main | noarch | newsbeuter | <Â 2.9-r4 | UNKNOWN |
Alpine | 3.4-main | noarch | newsbeuter | <Â 2.9-r4 | UNKNOWN |
Alpine | 3.5-main | noarch | newsbeuter | <Â 2.9-r4 | UNKNOWN |
Alpine | 3.6-main | noarch | newsbeuter | <Â 2.9-r4 | UNKNOWN |
Alpine | 3.7-main | noarch | newsbeuter | <Â 2.9-r4 | UNKNOWN |