Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

RedhatCVE
RedhatCVEadded 2025/08/13 3:28 p.m.13 views

CVE-2012-10037

PhpTax version 0.8 contains a remote code execution vulnerability in drawimage.php. The pfilez GET parameter is unsafely passed to the exec function without sanitization. A remote attacker can inject arbitrary shell commands, leading to code execution under the web server's context. No...

9.3CVSS8.4AI score0.75135EPSS
Exploits0References1
NVD
NVDadded 2025/08/11 3:15 p.m.2 views

CVE-2012-10037

PhpTax version 0.8 contains a remote code execution vulnerability in drawimage.php. The pfilez GET parameter is unsafely passed to the exec function without sanitization. A remote attacker can inject arbitrary shell commands, leading to code execution under the web server's context. No...

9.3CVSS0.75135EPSS
Exploits0References4
Vulnrichment
Vulnrichmentadded 2025/08/11 2:54 p.m.2 views

CVE-2012-10037 PhpTax pfilez Parameter Exec Remote Code Injection

PhpTax version 0.8 contains a remote code execution vulnerability in drawimage.php. The pfilez GET parameter is unsafely passed to the exec function without sanitization. A remote attacker can inject arbitrary shell commands, leading to code execution under the web server's context. No...

9.3CVSS8.3AI score0.75135EPSS
Exploits0References4
BDU FSTEC
BDU FSTECadded 2019/11/19 12:0 a.m.1 views

The vulnerability in the DrawImage function (magick/render.c) of the cross-platform graphics library GraphicsMagick, which allows a hacker to trigger a service failure.

The vulnerability of the DrawImage function in the cross-platform graphics library GraphicsMagick is related to a buffer overflow error. Exploiting this vulnerability could allow an attacker to cause a service failure by using a specially created file...

7.8CVSS0.00754EPSS
Exploits0References7Affected Software2
OSV
OSVadded 2017/11/06 5:29 a.m.5 views

CVE-2017-16547

The DrawImage function in magick/render.c in GraphicsMagick 1.3.26 does not properly look for pop keywords that are associated with push keywords, which allows remote attackers to cause a denial of service negative strncpy and application crash or possibly have unspecified other impact via a...

8.8CVSS8.9AI score
Exploits0References8
OSV
OSVadded 2017/11/06 5:29 a.m.1 views

DEBIAN-CVE-2017-16547

The DrawImage function in magick/render.c in GraphicsMagick 1.3.26 does not properly look for pop keywords that are associated with push keywords, which allows remote attackers to cause a denial of service negative strncpy and application crash or possibly have unspecified other impact via a...

8.8CVSS7.5AI score0.01012EPSS
Exploits0References1
CNVD
CNVDadded 2017/11/06 12:0 a.m.2 views

GraphicsMagick Denial of Service Vulnerability (CNVD-2017-33283)

GraphicsMagick is a simple set of image processing tools. The tool provides resizing, rotating, highlighting and other functions to images. A denial of service vulnerability exists in the 'DrawImage' function of the magick/render.c file in GraphicsMagick version 1.3.26, which can be exploited by...

8.8CVSS8.4AI score0.01012EPSS
Exploits0References1
Rows per page
Query Builder