Vulnerabilities > Giac Project

DATE CVE VULNERABILITY TITLE RISK
2017-12-14 CVE-2017-17526 Injection vulnerability in Giac Project Giac 1.2.3.57
Input.cc in Bernard Parisse Giac 1.2.3.57 does not validate strings before launching the program specified by the BROWSER environment variable, which might allow remote attackers to conduct argument-injection attacks via a crafted URL.
network
low complexity
giac-project CWE-74
8.8
8.8