2.7.0

DATE	CVE	VULNERABILITY TITLE	RISK
2014-08-26	CVE-2014-2527	Remote Command Injection vulnerability in K4DirStat kcleanup.cpp in KDirStat 2.7.0 does not properly quote strings when deleting a directory, which allows remote attackers to execute arbitrary commands via a " (double quote) character in the directory name, a different vulnerability than CVE-2014-2528. network kdirstat-project opensuse	6.8

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.