2 matches found
CVE-2025-63916
MyScreenTools v2.2.1.0 contains a critical OS command injection vulnerability in the GIF compression tool. The application fails to properly sanitize user-supplied file paths before passing them to cmd.exe, allowing attackers to execute arbitrary system commands with the privileges of the user...
CVE-2025-63916
Summary : CVE-2025-63916 affects MyScreenTools v2.2.1.0. The issue is a critical OS command injection in the GIF compression tool, where the CMD() function in GIFSicleTool/Form_gif_sicle_tool.cs concatenates unsanitized user input (file paths) and executes them via cmd.exe. This allows arbitrary ...