Vulnerabilities > Ohcount Project

DATE CVE VULNERABILITY TITLE RISK
2017-11-22 CVE-2017-16926 OS Command Injection vulnerability in Ohcount Project Ohcount 3.0.0
Ohcount 3.0.0 is prone to a command injection via specially crafted filenames containing shell metacharacters, which can be exploited by an attacker (providing a source tree for Ohcount processing) to execute arbitrary code as the user running Ohcount.
network
low complexity
ohcount-project CWE-78
critical
10.0