J'C Kabunga

icon indicating a website link https://kaptcha0.github.io

Results 17 comments of J'C Kabunga

Multiple instances opening simultaneously

I've also had a similar experience. ![image](https://github.com/Frosthaven/voicemeeter-windows-volume/assets/50426223/8690f194-6b03-4cc0-9856-f38252614118)

Issue: Command Injection Vulnerability

It seems that this vulnerability is more of an issue with the Python executable than pyenv. As far as I'm aware, pyenv doesn't ship custom Python installs, it's just a...

Issue: Command Injection Vulnerability

You're right. I just confirmed it with a normal python installation (no pyenv). I'm pinging the author. @kirankotari, sorry for the ping, but could you please have a look at...

Issue: Command Injection Vulnerability

My best guess is that there could be two reasons why this vulnerability exists: 1. It's something to do with the `pyenv exec` code that ends up calling the injected...

Issue: Command Injection Vulnerability

Just confirmed: It's not an issue with the batch file. I tested using the following code: ```bat :: test.bat @echo off chcp 1250 > NUL call echo %~n0 %* ```...

Issue: Command Injection Vulnerability

I think I found it. The problem exists in unsanitized arguments inside the `pyenv.bat` file. https://github.com/pyenv-win/pyenv-win/blob/1f17991e43b0598847c3d5de511d816c6f9c89c9/pyenv-win/bin/pyenv.bat#L65-L83 Specifically, on lines 74 and 75, where the scripts arguments are taken without sanitization,...

CLI: Installation progress bar

+1