CVE-2020-23893

A User Mode Write AV in Editor!TMethodImplementationIntercept+0x3c3682 of WildBit Viewer v6.6 allows attackers to cause a denial of service DoS via a crafted tiff file...

UBUNTU-CVE-2020-23884

A buffer overflow in Nomacs v3.15.0 allows attackers to cause a denial of service DoS via a crafted MNG file...

WildBit Viewer 安全漏洞

WildBit Viewer is a compact image viewer with slide show and editor. A buffer overflow vulnerability exists in WildBit Viewer version 6.6, which can be exploited by an attacker to cause a denial of service via a specially crafted tga file...

WildBit Viewer 缓冲区错误漏洞

WildBit Viewer is a compact image viewer with slide show and editor. A buffer overflow vulnerability exists in Editor!TMethodImplementationIntercept+0x54dcec in WildBit Viewer version 6.6, which can be exploited by an attacker to cause a denial of service via a specially crafted tga file...

WildBit Viewer 缓冲区错误漏洞

WildBit Viewer is a compact image viewer with slide show and editor.A buffer overflow vulnerability exists in Editor 0x576b in WildBit Viewer version 6.6, which can be exploited by attackers to cause a denial of service via a specially crafted tiff file...

python-pillow: Excessive memory allocation in PSD image reader

A flaw was found in python-pillow. PsdImagePlugin.PsdImageFile does not sanity check the number of input layers with regard to the size of the data block which could lead to a denial-of-service...

libtiff: Integer overflow in tif_getimage.c

An integer overflow flaw was found in libtiff that exists in the tifgetimage.c file. This flaw allows an attacker to inject and execute arbitrary code when a user opens a crafted TIFF file. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability...

Privilege escalation

BEESCMS v4.0 was discovered to contain an arbitrary file upload vulnerability via the component /admin/upload.php. This vulnerability allows attackers to execute arbitrary code via a crafted image file...

CVE-2020-23572

BEESCMS v4.0 was discovered to contain an arbitrary file upload vulnerability via the component /admin/upload.php. This vulnerability allows attackers to execute arbitrary code via a crafted image file...

Image-Processing Resource Management Error Vulnerability

Image-Processing is an image processing code repository that uses C. abhijitnathwani image-processing v0.1.0 contains a security vulnerability that stems from a problem with how the software handles image file sizes, which could be exploited by an attacker to cause a denial of service via a craft...

GitLab 7.12.x < 13.8.8 / 13.9.x < 13.9.6 / 13.10.x < 13.10.3 RCE

According to its self-reported version, the instance of GitLab running on the remote web server is prior to 13.8.8, 13.9.x prior to 13.9.6, or 13.10.x prior to 13.10.3. It is, therefore, affected by a remote code execution due to not properly validating image files being passed to a file parser. ...

CVE-2020-21573

An issue was discoverered in in abhijitnathwani image-processing v0.1.0, allows local attackers to cause a denial of service via a crafted image file...

CVE-2020-21573

An issue was discoverered in in abhijitnathwani image-processing v0.1.0, allows local attackers to cause a denial of service via a crafted image file...

Image-Processing资源管理错误漏洞

Image-Processing is an image processing code repository that uses C. abhijitnathwani image-processing v0.1.0 contains a security vulnerability that stems from a problem with how the software handles image file sizes, which could be exploited by an attacker to cause a denial of service via a craft...

EulerOS 2.0 SP8 : exiv2 (EulerOS-SA-2021-2628)

According to the versions of the exiv2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Exiv2 0.27.99.0 has a global buffer over-read in Exiv2::Internal::Nikon1MakerNote::print0x0088 in nikonmnint.cpp which can result in an informati...

S-cart 代码问题漏洞

S-cart, a Php-based e-commerce management platform from the S-cart community, is vulnerable in S-Cart v6.4.1 and below, which can be exploited by attackers to execute arbitrary code via a crafted IMG file...

Denial Of Service (DoS)

Exiv2 is vulnerable to denial of service. An attacker is able to crash the system by modifying the metadata of a maliciously crafted image file...

Portable Ltd Playable 代码问题漏洞

Portable Ltd Playable is a Full HD media player for Pc from Portable Ltd, UK. A security vulnerability exists in Portable Playable v9.18, which stems from a lack of effective filtering and restriction in the filename parameter of the software's upload module. The vulnerability allows an attacker ...

UBUNTU-CVE-2021-28021

Buffer overflow vulnerability in function stbiextendreceive in stbimage.h in stb 2.26 via a crafted JPEG file...

GHSA-9G8H-PJM4-Q92P Out-of-bounds Write in OpenCV.

In OpenCV 3.3.1 corresponding with OpenCV-Python 3.3.1.11, a heap-based buffer overflow happens in cv::Jpeg2KDecoder::readComponent8u in modules/imgcodecs/src/grfmtjpeg2000.cpp when parsing a crafted image file...