DigiNews

Summary

This article discusses a drag-and-drop vulnerability in terminal emulators that allows command execution when a user drops a file path into the terminal. It provides a proof-of-concept payload, notes that several emulators have been patched, and highlights that no CVE has been assigned yet, urging caution and use of patched or alternative terminals.