- EPSS 0.33%
- Veröffentlicht 30.11.2021 10:15:09
- Zuletzt bearbeitet 21.11.2024 06:22:22
# Vulnerability in `pygmalion`, `pygmalion-virtualenv` and `refined` themes **Description**: these themes use `print -P` on user-supplied strings to print them to the terminal. All of them do that on git information, particularly the branch name, so ...
CVE-2021-3725
- EPSS 1.36%
- Veröffentlicht 30.11.2021 10:15:08
- Zuletzt bearbeitet 21.11.2024 06:22:15
Vulnerability in dirhistory plugin Description: the widgets that go back and forward in the directory history, triggered by pressing Alt-Left and Alt-Right, use functions that unsafely execute eval on directory names. If you cd into a directory with ...
CVE-2021-3726
- EPSS 0.44%
- Veröffentlicht 30.11.2021 10:15:08
- Zuletzt bearbeitet 21.11.2024 06:22:15
# Vulnerability in `title` function **Description**: the `title` function defined in `lib/termsupport.zsh` uses `print` to set the terminal title to a user-supplied string. In Oh My Zsh, this function is always used securely, but custom user code cou...
CVE-2021-3727
- EPSS 1.36%
- Veröffentlicht 30.11.2021 10:15:08
- Zuletzt bearbeitet 21.11.2024 06:22:15
# Vulnerability in `rand-quote` and `hitokoto` plugins **Description**: the `rand-quote` and `hitokoto` fetch quotes from quotationspage.com and hitokoto.cn respectively, do some process on them and then use `print -P` to print them. If these quotes ...
CVE-2021-3934
- EPSS 0.2%
- Veröffentlicht 12.11.2021 12:15:07
- Zuletzt bearbeitet 21.11.2024 06:22:48
ohmyzsh is vulnerable to Improper Neutralization of Special Elements used in an OS Command