CVE-2026-34552

creationtimestamp| type| source ---|---|--- 2026-04-01 02:00:51+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3miflu2p5ed2g...

Linux Distros Unpatched Vulnerability : CVE-2021-34552

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Pillow through 8.2.0 and PIL aka Python Imaging Library through 1.1.7 allow an attacker to pass controlled parameters directly into a convert function to trigge...

SUSE SLES15 Security Update : python-Pillow (SUSE-SU-2024:1673-2)

The remote SUSE Linux SLES15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:1673-2 advisory. - Fixed ImagePath.Path array handling bsc1194552, CVE-2022-22815, bsc1194551, CVE-2022-22816 - Use snprintf instead of sprintf bsc1188574,...

CVE-2024-34552

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Select-Themes Stockholm allows PHP Local File Inclusion.This issue affects Stockholm: from n/a through 9.6...

CVE-2024-34552

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Select-Themes Stockholm allows PHP Local File Inclusion.This issue affects Stockholm: from n/a through 9.6...

CVE-2024-34552

CVE-2024-34552 is a Local File Inclusion (path traversal) issue in the WordPress Stockholm theme, affecting Stockholm up to version 9.6. The vulnerability arises from improper pathname limitation, enabling unauthenticated LFI and, in some cases, authenticated LFI against restricted files. The Red...

CVE-2024-34552 WordPress Stockholm theme <= 9.6 - Local File Inclusion vulnerability

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Select-Themes Stockholm allows PHP Local File Inclusion.This issue affects Stockholm: from n/a through 9.6...

CVE-2024-34552 WordPress Stockholm theme <= 9.6 - Local File Inclusion vulnerability

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Select-Themes Stockholm allows PHP Local File Inclusion.This issue affects Stockholm: from n/a through 9.6...

openSUSE Security Advisory (SUSE-SU-2024:1673-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

WordPress Stockholm Theme <= 9.6 is vulnerable to Local File Inclusion

Software Stockholm Type Theme Vulnerable versions = 9.6 Fixed in 9.7 OWASP Top 10 A3: Injection Classification Local File Inclusion CVE CVE-2024-34552 Patch priority Low CVSS severity Low 8.5 Developer Claim ownership PSID 85b9ed51ce3f Credits Rafie Muhammad Patchstack Required privilege...

CVE-2023-34552

creationtimestamp| type| source ---|---|--- 2024-02-08 12:46:20+00:00| published-proof-of-concept| Telegram/2xp2HKwG4k-i-985uD9q3QFLiHE0U-cNCXCN5jcjj1A 2024-02-08 13:13:15+00:00| published-proof-of-concept| https://t.me/ETHICALHACKERSCOMMUNITY2/3672...

CVE-2023-34552

In certain EZVIZ products, two stack based buffer overflows in mulicastparsesadppacket and mulicastgetpacktype functions of the SADP multicast protocol can allow an unauthenticated attacker present on the same local network as the camera to achieve remote code execution. This affects...

CVE-2023-34552

EZVIZ CS Series vulnerabilites CVE-2023-34552 involve two stack-based buffer overflows in the SADP protocol parser (mulicast_parse_sadp_packet and mulicast_get_pack_type) that permit unauthenticated, local-network attackers to achieve remote code execution. Affected firmware ranges include CS-C6N...

CVE-2023-34552

In certain EZVIZ products, two stack based buffer overflows in mulicastparsesadppacket and mulicastgetpacktype functions of the SADP multicast protocol can allow an unauthenticated attacker present on the same local network as the camera to achieve remote code execution. This affects...

Amazon Linux 2023 : python3-pillow, python3-pillow-devel, python3-pillow-tk (ALAS2023-2023-146)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2023-146 advisory. An issue was discovered in Pillow before 8.1.1. In TiffDecode.c, there is a negative-offset memcpy with an invalid size. CVE-2021-25290 An issue was discovered in Pillow before 8.1.1. In...

Huawei EulerOS: Security Advisory for python-pillow (EulerOS-SA-2023-1288)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS Virtualization 3.0.6.6 : python-pillow (EulerOS-SA-2022-1142)

According to the versions of the python-pillow package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - The package pillow 5.2.0 and before 8.3.2 are vulnerable to Regular Expression Denial of Service ReDoS via the getrgb...

Rocky Linux 8 : python-pillow (RLSA-2021:4149)

The remote Rocky Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2021:4149 advisory. - Pillow through 8.2.0 and PIL aka Python Imaging Library through 1.1.7 allow an attacker to pass controlled parameters directly into a convert function to trigg...

RLSA-2021:4149 Moderate: python-pillow security update

The python-pillow packages contain a Python image processing library that provides extensive file format support, an efficient internal representation, and powerful image-processing capabilities. Security Fixes: python-pillow: Out-of-bounds read in J2K image reader CVE-2021-25287 python-pillow:...

Moderate: python-pillow security update

The python-pillow packages contain a Python image processing library that provides extensive file format support, an efficient internal representation, and powerful image-processing capabilities. Security Fixes: python-pillow: Out-of-bounds read in J2K image reader CVE-2021-25287 python-pillow:...