2 matches found
CVE-2025-55294
creationtimestamp| type| source ---|---|--- 2025-08-20 07:31:47+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3lwsvvkqayw2p...
CVE-2025-55294 Command Injection via `format` option in screenshot-desktop
screenshot-desktop allows capturing a screenshot of your local machine. This vulnerability is a command injection issue. When user-controlled input is passed into the format option of the screenshot function, it is interpolated into a shell command without sanitization. This results in arbitrary...