Full title: Atlassian SourceTree 2.5c Client URL Handler Command Injection Vulnerability Category: remote exploits Platform: multiple Atlassian SourceTree Client version 2.5c and prior contain a client URL handler command injection vulnerability that allows attackers to execute specially crafted sourcetree:// commands with arbitrary arguments on multiple platforms # 0day.today @ http://0day.today/