Lucene search
K

6 matches found

OSV
OSV
added 2026/01/27 9:30 a.m.5 views

GHSA-8623-9FWR-4CXV Quick-Media Batik Codec FIX package has Code Injection vulnerability

Improper Control of Generation of Code 'Code Injection' vulnerability in liuyueyi quick-media plugins/svg-plugin/batik-codec-fix/src/main/java/org/apache/batik/ext/awt/image/codec/png modules. This vulnerability is associated with program files PNGImageEncoder.Java. This issue affects all...

5.3CVSS5.9AI score0.00401EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2026/01/27 9:30 a.m.8 views

Quick-Media Batik Codec FIX package has Code Injection vulnerability

Improper Control of Generation of Code 'Code Injection' vulnerability in liuyueyi quick-media plugins/svg-plugin/batik-codec-fix/src/main/java/org/apache/batik/ext/awt/image/codec/png modules. This vulnerability is associated with program files PNGImageEncoder.Java. This issue affects all...

5.3CVSS5.9AI score0.00401EPSS
Exploits0References4Affected Software1
Vulnrichment
Vulnrichment
added 2026/01/27 8:42 a.m.5 views

CVE-2026-24806 Buffer Write Security Vulnerability in liuyueyi/quick-media

Improper Control of Generation of Code 'Code Injection' vulnerability in liuyueyi quick-media plugins/svg-plugin/batik-codec-fix/src/main/java/org/apache/batik/ext/awt/image/codec/png modules. This vulnerability is associated with program files PNGImageEncoder.Java. This issue affects quick-media...

5.3CVSS5.9AI score0.00401EPSS
Exploits0References1
CVE
CVE
added 2026/01/27 8:42 a.m.23 views

CVE-2026-24806

CVE-2026-24806 arises from an improper generation of code in liuyueyi’s quick-media project, specifically the PNGImageEncoder path within the SVG Batik codec fix module. The vulnerability affects quick-media before v1.0 and is described as a Code Injection issue. Supported details from multiple s...

5.3CVSS5.9AI score0.00401EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/01/27 12:0 a.m.6 views

Quick-Media security vulnerabilities

Quick-Media is a multimedia service software developed by YiHui’s individual developers. Versions of Quick-Media prior to v1.0 contained security vulnerabilities. These vulnerabilities stemmed from a code injection vulnerability in the PNG encoding component, PNGImageEncoder.Java, which could all...

5.3CVSS6.1AI score0.00401EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/01/27 12:0 a.m.10 views

PT-2026-4875

Improper Control of Generation of Code 'Code Injection' vulnerability in liuyueyi quick-media plugins/svg-plugin/batik-codec-fix/src/main/java/org/apache/batik/ext/awt/image/codec/png modules. This vulnerability is associated with program files PNGImageEncoder.Java. This issue affects quick-media...

5.3CVSS5.9AI score0.00401EPSS
Exploits0References2
Rows per page
Query Builder