PT-2020-21195 · Ascii-Art · Ascii-Art
Published
2020-09-01
·
Updated
2020-09-01
None
No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.
Name of the Vulnerable Software and Affected Versions
ascii-art versions prior to 1.4.4
Description
The issue allows for command injection when user input is passed into the argument of the
ascii-art preview command. This is exploitable when the ascii-art comment is called programmatically.Recommendations
Update to version 1.4.4 or later.
Command Injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Ascii-Art