{"id":"CVE-2008-3904","details":"src/main-win.c in GPicView 0.1.9 in Lightweight X11 Desktop Environment (LXDE) allows context-dependent attackers to execute arbitrary commands via shell metacharacters in a filename.","modified":"2026-04-10T03:40:04.543436Z","published":"2008-09-04T17:41:00Z","references":[{"type":"EVIDENCE","url":"http://www.openwall.com/lists/oss-security/2008/08/30/1"},{"type":"EVIDENCE","url":"http://www.openwall.com/lists/oss-security/2008/09/03/1"},{"type":"WEB","url":"http://lxde.svn.sourceforge.net/viewvc/lxde?view=rev&sortby=date&revision=845"},{"type":"WEB","url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/45137"}],"schema_version":"1.7.5"}