/usr/bin/shutter in Shutter through 0.93.1 allows user-assisted remote attackers to execute arbitrary commands via a crafted image name that is mishandled during a “Run a plugin” action.
Reference Links(if available):
CVSS Score (if available)
v2: / MEDIUMAV:N/AC:M/Au:N/C:C/I:C/A:C
v3: / HIGHCVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Links to Exploits(if available)