Vulnerabilities > Xmonad > Xmonad Contrab
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2014-10-06 | CVE-2013-1436 | Code Injection vulnerability in Xmonad Xmonad-Contrab 0.11 The XMonad.Hooks.DynamicLog module in xmonad-contrib before 0.11.2 allows remote attackers to execute arbitrary commands via a web page title, which activates the commands when the user clicks on the xmobar window title, as demonstrated using an action tag. | 7.5 |