VYPR

Kcoreaddons

by KDE

Source repositories

CVEs (1)

  • CVE-2026-41526MedApr 28, 2026
    risk 0.35cvss 6.5epss 0.00

    In KDE KCoreAddons before 6.25, KShell::quoteArgs is intended to safely quote arguments so that they can be passed to a shell command. This parsing does not adequately handle metacharacters, leading to an escape from the shell. All applications relying on this method in a…