Vulnerabilities (CVE)

Filtered by vendor Gentoo Subscribe
Filtered by product Xdg-utils
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2014-9622 1 Gentoo 1 Xdg-utils 2024-02-28 6.8 MEDIUM N/A
Eval injection vulnerability in xdg-utils 1.1.0 RC1, when no supported desktop environment is identified, allows context-dependent attackers to execute arbitrary code via the URL argument to xdg-open.
CVE-2008-0386 2 Gentoo, Mandrakesoft 2 Xdg-utils, Mandrake Linux 2024-02-28 6.8 MEDIUM N/A
Xdg-utils 1.0.2 and earlier allows user-assisted remote attackers to execute arbitrary commands via shell metacharacters in a URL argument to (1) xdg-open or (2) xdg-email.