Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
backintime (aka Back in Time) before 1.1.24 did improper escaping/quoting of file paths used as arguments to the 'notify-send' command, leading to some parts of file paths being executed as shell commands within an os.system call in qt4/plugins/notifyplugin.py. This could allow an attacker to craft an unreadable file with a specific name to run arbitrary shell commands.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
backintime 安全漏洞
Vulnerability Description
backintime(又名Back in Time)是一套Linux备份工具。 backintime 1.1.24之前的版本中存在安全漏洞。攻击者可通过制作带有特定名称的不可读取文件利用该漏洞执行任意的shell命令。
CVSS Information
N/A
Vulnerability Type
N/A