■■□□□ CVE-2023-36250: CSV Injection vulnerability in GNOME time tracker version 3.0.2, allows local attackers to execute arbitrary code via crafted .tsv file when creating a new record.
https://github.com/BrunoTeixeira1996/CVE-2023-36250
https://t.me/cKure/12823