Xmonad: >> Xmonad-Contrab Security Vulnerabilities
The XMonad.Hooks.DynamicLog module in xmonad-contrib before 0.11.2 allows remote attackers to execute arbitrary commands via a web page title, which activates the commands when the user clicks on the xmobar window title, as demonstrated using an action tag.
CVSS Score
7.5
EPSS Score
0.082
Published
2014-10-06