CVE-2023-0943

CVE-2023-0943 affects SourceCodester Best POS Management System v1.0, specifically the Image Handler’s save_settings function (index.php?page=site_settings). The vulnerability arises from unsafely handling the img argument (input ../../shell.php), enabling unrestricted file upload and potential r...

Best pos management system 代码问题漏洞

Best pos management system is a best pos management system by Mayuri K. Individual developer. A code issue exists in version 1.0 of Best POS Management System, which is caused by some unknown processing in the file index.php?page=sitesettings of the component image handler, resulting in...

Pharmacy Management System Arbitrary File Upload Vulnerability

Pharmacy Management System MPMS is a multi-lingual pharmacy management system developed by Mayuri K. The Pharmacy Management System v1.0 version is vulnerable to arbitrary file uploads due to a lack of validation of uploaded files in the add.php file of the component Avatar Image Handler. php fil...

PT-2023-16629 · Sourcecodester · Sourcecodester Best Pos Management System

Name of the Vulnerable Software and Affected Versions: SourceCodester Best POS Management System version 1.0 Description: A problematic issue has been found in the Image Handler component, affecting the function save settings of the file "index.php?page=site settings". The manipulation of the...

CVE-2023-0918

A vulnerability has been found in codeprojects Pharmacy Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file add.php of the component Avatar Image Handler. The manipulation leads to unrestricted upload. The attack can be initiated remotely. The...

CVE-2023-0918

A vulnerability has been found in codeprojects Pharmacy Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file add.php of the component Avatar Image Handler. The manipulation leads to unrestricted upload. The attack can be initiated remotely. The...

Out-of-bounds

A vulnerability has been found in codeprojects Pharmacy Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file add.php of the component Avatar Image Handler. The manipulation leads to unrestricted upload. The attack can be initiated remotely. The...

CVE-2023-0918 codeprojects Pharmacy Management System Avatar Image add.php unrestricted upload

A vulnerability has been found in codeprojects Pharmacy Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file add.php of the component Avatar Image Handler. The manipulation leads to unrestricted upload. The attack can be initiated remotely. The...

PT-2023-16618 · Unknown · Code-Projects Pharmacy Management System

Name of the Vulnerable Software and Affected Versions: codeprojects Pharmacy Management System version 1.0 Description: A critical issue has been found in the Avatar Image Handler component of the file add.php, leading to unrestricted upload. The attack can be initiated remotely. The issue affect...

Pharmacy Management System 代码问题漏洞

Pharmacy Management System MPMS is a multi-lingual pharmacy management system developed by Mayuri K. The Pharmacy Management System v1.0 version is vulnerable to arbitrary file uploads due to a lack of validation of uploaded files in the add.php file of the component Avatar Image Handler. php fil...

SUSE CVE-2004-1026

Multiple integer overflows in the image handler for imlib 1.9.14 and earlier, which is used by gkrellm and several window managers, allow remote attackers to cause a denial of service application crash and execute arbitrary code via certain image files...

ROS-20230124-03

Vulnerability of LibTIFF set of libraries and utilities for viewing, editing and converting TIFF files is related to the processCropSelections function of the tools/tiffcrop.c file of the TIFF Image Handler component. Exploitation of the vulnerability could allow an attacker acting remotely to se...

CVE-2022-3992

A vulnerability classified as problematic was found in SourceCodester Sanitization Management System. Affected by this vulnerability is an unknown functionality of the file admin/?page=systeminfo of the component Banner Image Handler. The manipulation leads to cross site scripting. The attack can...

PT-2022-25114 · Sourcecodester · Sourcecodester Sanitization Management System

Name of the Vulnerable Software and Affected Versions: SourceCodester Sanitization Management System affected versions not specified Description: A problematic vulnerability was found in the SourceCodester Sanitization Management System, affecting an unknown functionality of the file...

CVE-2022-3992

CVE-2022-3992 affects SourceCodester Sanitization Management System. The vulnerability is in an unknown functionality of the file admin/?page=system_info within the Banner Image Handler, enabling cross-site scripting. Attacks can be launched remotely; CVSS scores in the sources range from 6.1 (NV...

CVE-2021-21871

A memory corruption vulnerability exists in the DMG File Format Handler functionality of PowerISO 7.9. A specially crafted DMG file can lead to an out-of-bounds write. An attacker can provide a malicious file to trigger this vulnerability. The vendor fixed it in a bug-release of the current versi...

UBUNTU-CVE-2020-17507

An issue was discovered in Qt through 5.12.9, and 5.13.x through 5.15.x before 5.15.1. readxbmbody in gui/image/qxbmhandler.cpp has a buffer over-read...

CVE-2019-19775

The image thumbnailing handler in Zulip Server versions 1.9.0 to before 2.0.8 allowed an open redirect that was visible to logged-in users...

Use-After-Free

JasPer is vulnerable to a use-after-free attacks. Incorrect decoding of certain JPEG 2000 image files allow remote attackers to cause application crash resulting in denial of service conditions. Affected component is JPEG 2000 Image Handler...

Denial Of Service (DoS)

JasPer is vulnerable to denial of service attacks. A remote attacker could cause invalid reads and application crash via a crafted JPEG 2000 image. This issue affects the function jasmatrixclip of the file jasseq.c of the component JPEG 2000 Image Handler...