Feh · Feh · CVE-2010-2246
**Name of the Vulnerable Software and Affected Versions**
feh version 1.8 and earlier
**Description**
The issue allows remote attackers to execute arbitrary commands via shell metacharacters in a URL when the `--wget-timestamp` option is enabled.
**Recommendations**
For feh version 1.8 and earlier, consider disabling the `--wget-timestamp` option as a temporary workaround until a patch is available.