Greenwoodsoftware Less
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Greenwoodsoftware Less.
By the Year
In 2025 there have been 0 vulnerabilities in Greenwoodsoftware Less. Last year, in 2024 Less had 2 security vulnerabilities published. Right now, Less is on track to have less security vulnerabilities in 2025 than it did last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2025 | 0 | 0.00 |
| 2024 | 2 | 7.80 |
It may take a day or so for new Less vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Greenwoodsoftware Less Security Vulnerabilities
Less utility OS command exec via newline injection
CVE-2024-32487
- April 13, 2024
less through 653 allows OS command execution via a newline character in the name of a file, because quoting is mishandled in filename.c. Exploitation typically requires use with attacker-controlled file names, such as the files extracted from an untrusted archive. Exploitation also requires the LESSOPEN environment variable, but this is set by default in many common cases.
less Shell Quote Omission in LESSCLOSE (CVE-2022-48624)
CVE-2022-48624
7.8 - High
- February 19, 2024
close_altfile in filename.c in less before 606 omits shell_quote calls for LESSCLOSE.
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Greenwoodsoftware Less or by Greenwoodsoftware? Click the Watch button to subscribe.
