CVE-2026-25792
- EPSS 0.01%
- Veröffentlicht 20.03.2026 10:04:34
- Zuletzt bearbeitet 23.03.2026 15:51:14
Greenshot is an open source Windows screenshot utility. Versions 1.3.312 and below have untrusted executable search path / binary hijacking vulnerability that allows a local attacker to execute arbitrary code when the affected Windows application lau...
CVE-2026-22035
- EPSS 0.04%
- Veröffentlicht 08.01.2026 00:10:28
- Zuletzt bearbeitet 27.01.2026 19:11:58
Greenshot is an open source Windows screenshot utility. Versions 1.3.310 and below arvulnerable to OS Command Injection through unsanitized filename processing. The FormatArguments method in ExternalCommandDestination.cs:269 uses string.Format() to i...
CVE-2025-59050
- EPSS 0.34%
- Veröffentlicht 16.09.2025 16:23:37
- Zuletzt bearbeitet 02.10.2025 18:54:39
Greenshot is an open source Windows screenshot utility. Greenshot 1.3.300 and earlier deserializes attacker-controlled data received in a WM_COPYDATA message using BinaryFormatter.Deserialize without prior validation or authentication, allowing a loc...
CVE-2023-34634
- EPSS 38.03%
- Veröffentlicht 01.08.2023 14:15:10
- Zuletzt bearbeitet 02.10.2025 18:56:36
Greenshot 1.2.10 and below allows arbitrary code execution because .NET content is insecurely deserialized when a .greenshot file is opened.