CVE-2026-22035
published 2026-01-08CVE-2026-22035: Greenshot is an open source Windows screenshot utility. Versions 1.3.310 and below arvulnerable to OS Command Injection through unsanitized filename…
PriorityP346high7.3CVSS 3.1
AVLACLPRLUIRSUCHIHAH
EPSS
0.90%
55.1th percentile
Greenshot is an open source Windows screenshot utility. Versions 1.3.310 and below arvulnerable to OS Command Injection through unsanitized filename processing. The FormatArguments method in ExternalCommandDestination.cs:269 uses string.Format() to insert user-controlled filenames directly into shell commands without sanitization, allowing attackers to execute arbitrary commands by crafting malicious filenames containing shell metacharacters. This issue is fixed in version 1.3.311.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| getgreenshot | greenshot | < 1.3.311 | 1.3.311 |
| greenshot | greenshot | < 1.3.311 | 1.3.311 |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No advisories linked to this vulnerability.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
https://github.com/greenshot/greenshot/commit/5dedd5c9f0a9896fa0af1d4980d875a48bf432cbhttps://github.com/greenshot/greenshot/releases/tag/v1.3.311https://github.com/greenshot/greenshot/security/advisories/GHSA-7hvw-q8q5-gpmjhttps://github.com/greenshot/greenshot/security/advisories/GHSA-7hvw-q8q5-gpmj
2026-01-08
Published