Benjjvi

**Name of the Vulnerable Software and Affected Versions** iTunesRPC-Remastered (affected versions not specified) **Description** The issue concerns a failure to properly sanitize user input, which can lead to file deletion limited only by the process permissions. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** iTunesRPC-Remastered versions prior to the version containing commit cdcd48b **Description** The issue arises from improper sanitization of image file paths, leading to OS-level command injection. Users are advised to upgrade to a patched version. **Recommendations** For versions prior to the one containing commit cdcd48b, upgrade to a version that includes the patch from commit cdcd48b to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** iTunesRPC-Remastered versions prior to commit 24f43aa **Description** The issue concerns a discord rich presence application for use with iTunes & Apple Music, where user input is not properly sanitized, allowing code injection. Users are advised to upgrade as soon as possible. There are no known workarounds for this issue. **Recommendations** For versions prior to commit 24f43aa, upgrade to a version after commit 24f43aa as soon as possible to resolve the issue. As a temporary workaround, consider restricting user input to minimize the risk of code injection until a patch is available.