UBUNTU-CVE-2025-68950

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.2-12, Magick fails to check for circular references between two MVGs, leading to a stack overflow. This is a DoS vulnerability, and any situation that allows reading the mvg file wi...

EUVD-2011-1341

Malware in sbrugna...

EUVD-2023-36902

Malicious code in bioql PyPI...

CVE-2011-1334

Cross-site scripting XSS vulnerability in Cybozu Office 6, Cybozu Garoon 2.0.0 through 2.1.3, Cybozu Dezie before 6.1, Cybozu MailWise before 3.1, and Cybozu Collaborex before 1.5 allows remote attackers to inject arbitrary web script or HTML via vectors related to "downloading graphic files from...

CVE-2023-32659

SUBNET PowerSYSTEM Center versions 2020 U10 and prior contain a cross-site scripting vulnerability that may allow an attacker to inject malicious code into report header graphic files that could propagate out of the system and reach users who are subscribed to email notifications...

Remote Code Execution (RCE)

System.Drawing.Common is vulnerable to Remote Code Execution RCE. The vulnerability exists because the library does not add the reference count to the graphics metafiles, which allows an attacker to inject and execute malicious code by providing maliciously crafted graphic files. This vulnerabili...

The vulnerability of the ReadXWDImage function in the ImageMagick software, which is used for reading and editing graphic files, stems from a lack of protection against division by zero. This allows attackers to trigger a service failure.

The vulnerability of the ReadXWDImage function in the ImageMagick software, which is used for reading and editing graphic files, involves division by zero. Exploiting this vulnerability allows a remote attacker to cause a service failure...

The vulnerability of the InsertRow function in the ImageMagick program for reading and editing graphic files allows a attacker to cause a service failure.

The vulnerability of the InsertRow function in the ImageMagick software suite for reading and editing graphic files is related to writing data beyond the buffer boundaries of memory. Exploiting this vulnerability could allow a malicious actor to cause service interruptions by using a specially...

PT-2018-15137 · Artifex · Artifex Mupdf

Name of the Vulnerable Software and Affected Versions: Artifex MuPDF version 1.14.0 Description: The issue allows remote attackers to cause a denial of service, resulting in an application crash, via a crafted svg file. This is due to a NULL pointer dereference in the svg run image function...

The vulnerability of the Windows operating system allows a remote attacker to execute arbitrary code with privileges of the current user.

The Windows operating system contains a vulnerability related to the incorrect processing of specially crafted graphic files in the EMF format. Exploiting this vulnerability can allow an unauthorized intruder to execute arbitrary code with privileges of the current user...

Mozilla Firefox < 36.0 Multiple Vulnerabilities

Binary data 8653.prm...

Firefox ESR 31.x < 31.5 Multiple Vulnerabilities (Mac OS X)

The version of Firefox ESR 31.x installed on the remote Mac OS X host is prior to 31.5. It is, therefore, affected by the following vulnerabilities : - An information disclosure vulnerability exists related to the autocomplete feature that allows an attacker to read arbitrary files. CVE-2015-0822...

Cross site scripting

Cross-site scripting XSS vulnerability in Cybozu Office 6 and Cybozu Garoon 2.0.0 through 2.1.3 allows remote attackers to inject arbitrary web script or HTML via vectors related to "downloading graphic files from the bulletin board system."...

Cross site scripting

Cross-site scripting XSS vulnerability in Cybozu Office 6, Cybozu Garoon 2.0.0 through 2.1.3, Cybozu Dezie before 6.1, Cybozu MailWise before 3.1, and Cybozu Collaborex before 1.5 allows remote attackers to inject arbitrary web script or HTML via vectors related to "downloading graphic files from...

Multiple Cybozu products vulnerable to cross-site scripting

Overview Multiple products provided by Cybozu, Inc. contain a cross-site scripting vulnerability. Multiple groupware provided by Cybozu, Inc. contain a cross-site scripting vulnerability due to an issue when downloading graphic files from the mail system. Sen UENO of Tricorder Co. Ltd. reported...

JVN#80877328: Multiple Cybozu products vulnerable to cross-site scripting

Multiple groupware provided by Cybozu, Inc. contain a cross-site scripting vulnerability due to an issue when downloading graphic files from the bulletin board system. Impact An arbitrary script may be executed on the web browser of an user who is logged on. Solution Update the software Update to...

Moderate: Red Hat Security Advisory: ImageMagick security update

Updated ImageMagick packages that correct several security issues are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. ImageMagick is an image display and manipulation tool for the X Window System that can read and write multiple...

CentOS 3 / 4 : ImageMagick (CESA-2006:0633)

Updated ImageMagick packages that fix several security issues are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. ImageMagickTM is an image display and manipulation tool for the X Window System that can read and write multiple...

[SECURITY] [DSA 957-2] New ImageMagick packages fix arbitrary command execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 957-2 [email protected] http://www.debian.org/security/ Martin Schulze January 31st, 2006 http://www.debian.org/security/faq -...

Mozilla XBM graphic files DoS

Large file size causes memory exhaustion...