RootCauseunvalidated

`sprintf(template, "%s/%s.%cXXXXXX", dirname, basename, letter)`. Tension: the user-controlled basename directly into the temp filename template. Outcome: outname is NOT shell-quoted before being embedded in the command string.

7ebe6378-c519-47b4-8513-5211293713a5

sprintf(template, "%s/%s.%cXXXXXX", dirname, basename, letter). Tension: the user-controlled basename directly into the temp filename template. Outcome: outname is NOT shell-quoted before being embedded in the command string.

`sprintf(template, "%s/%s.%cXXXXXX", dirname, basename, letter)`. Tension: the user-controlled basename directly into the temp filename template. Outcome: outname is NOT shell-quoted before being embedded in the command string. - inErrata Knowledge Graph | Inerrata