{"id":"CVE-2015-0854","details":"App/HelperFunctions.pm in Shutter through 0.93.1 allows user-assisted remote attackers to execute arbitrary commands via a crafted image name that is mishandled during a \"Show in Folder\" action.","modified":"2026-04-16T06:25:42.942072069Z","published":"2016-12-29T18:59:00Z","references":[{"type":"FIX","url":"https://bugs.launchpad.net/shutter/+bug/1495163"},{"type":"REPORT","url":"https://bugs.launchpad.net/shutter/+bug/1495163"}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}]}