‘BatBadBut’ Command Injection Vulnerability Affects Multiple Programming Languages
April 12, 2024 at 07:36AM Multiple programming languages are affected by a serious vulnerability, ‘BatBadBut’, allowing command injection in Windows applications, due to improper escape of command arguments when executing batch files. The flaw, affecting languages’ runtimes, enables attackers to inject commands into Windows applications. Some affected languages have issued patches, but successful exploitation requires … Read more