These programs use backticks command execution, which interprets shell commands. This means that a filename containing a single quote can be used to execute arbitrary code on the system analyzing a package.
Publicly reported since neither of these files is installed by default.
These programs use backticks command execution, which interprets shell commands. This means that a filename containing a single quote can be used to execute arbitrary code on the system analyzing a package.
Publicly reported since neither of these files is installed by default.