UBUNTU-CVE-2021-44118

SPIP 4.0.0 is affected by a Cross Site Scripting XSS vulnerability. To exploit the vulnerability, a visitor must browse to a malicious SVG file. The vulnerability allows an authenticated attacker to inject malicious code running on the client side into web pages visited by other users stored XSS...

Fedora: Security Advisory for qt5-qtsvg (FEDORA-2022-8e3fbc74e9)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

convert-svg 路径遍历漏洞

convert-svg is open source series of open source software for converting SVG format files to other formats. A security vulnerability exists in convert-svg, which can be exploited by an attacker to read an arbitrary file from the filesystem via a carefully constructed SVG file and then display the...

Nordaaker Convos 跨站脚本漏洞

Nordaaker Convos is an open source web browser-based multi-user chat application from Nordaaker, Norway. A cross-site scripting vulnerability exists in Nordaaker Convos, which stems from a problem with the software's restrictions on files with SVG extensions. An attacker can upload files with the...

UBUNTU-CVE-2021-45930

Qt SVG in Qt 5.0.0 through 5.15.2 and 6.0.0 through 6.2.1 has an out-of-bounds write in QtPrivate::QCommonArrayOps::growAppend called from QPainterPath::addPath and QPathClipper::intersect...

Digia Qt 缓冲区错误漏洞

Digia Qt is a cross-platform C++ application development framework from Digia Finland. The framework can be used to develop GUI programs. A buffer error vulnerability exists in Qt SVG in Digia Qt 5.0.0 through 5.15.2 and 6.0.0 through 6.2.1, which stems from an out-of-bounds write in...

Wiki.js 跨站脚本漏洞

Wiki.js is a suite of open source Wiki software based on Node.js and written in JavaScript by the Requarks.io team. Requarks Wiki.js suffers from a cross-site scripting vulnerability that stems from a script that uploads SVG files through a custom request using a forged MIME type. By creating a...

UBUNTU-CVE-2021-45267

An invalid memory address dereference vulnerability exists in gpac 1.1.0 via the svgnodestart function, which causes a segmentation fault and application crash...

DEBIAN-CVE-2021-44925

A null pointer dereference vulnerability exists in gpac 1.1.0 in the gfsvggetattributename function, which causes a segmentation fault and application crash...

HTML Cleaner allows crafted and SVG embedded scripts to pass through

...

PT-2021-23490 · Unknown · Abantecart

Name of the Vulnerable Software and Affected Versions: AbanteCart versions prior to 1.3.2 Description: An issue was discovered that allows any low-privileged user with file-upload permissions to upload a malicious SVG document containing an XSS payload. Recommendations: For versions prior to 1.3....

AbanteCart 跨站脚本漏洞

AbanteCart is a PHP-based e-commerce platform. AbanteCart is vulnerable to a cross-site scripting vulnerability prior to 1.3.2, which stems from a lack of data validation filtering of user-supplied data and output. An attacker with file upload privileges could exploit this vulnerability to upload...

ALPINE-CVE-2021-43818

lxml is a library for processing XML and HTML in the Python language. Prior to version 4.6.5, the HTML Cleaner in lxml.html lets certain crafted script content pass through, as well as script content in SVG files embedded using data URIs. Users that employ the HTML cleaner in a security relevant...

CVE-2021-43818 HTML Cleaner allows crafted and SVG embedded scripts to pass through

lxml is a library for processing XML and HTML in the Python language. Prior to version 4.6.5, the HTML Cleaner in lxml.html lets certain crafted script content pass through, as well as script content in SVG files embedded using data URIs. Users that employ the HTML cleaner in a security relevant...

PT-2021-6092 · Lxml +10 · Lxml +10

Name of the Vulnerable Software and Affected Versions: lxml versions prior to 4.6.5 Description: The HTML Cleaner in lxml.html allows certain crafted script content to pass through, as well as script content in SVG files embedded using data URIs. This can be exploited by a remote attacker to...

[SECURITY] Fedora 34 Update: autotrace-0.31.1-62.fc34

AutoTrace is a program for converting bitmaps to vector graphics. Supported input formats include BMP, TGA, PNM, PPM, and any format supported by ImageMagick, whereas output can be produced in Postscript, SVG, xfig, SWF, and others...

Fedora: Security Advisory for autotrace (FEDORA-2021-b58af96f33)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

PYSEC-2021-841

In CKAN, versions 2.9.0 to 2.9.3 are affected by a stored XSS vulnerability via SVG file upload of users’ profile picture. This allows low privileged application users to store malicious scripts in their profile picture. These scripts are executed in a victim’s browser when they open the maliciou...

Ckan 跨站脚本漏洞

Ckan is an open source Dms data management system. Used to power data centers and data portals. A cross-site scripting vulnerability exists in CKAN versions 2.9.0 through 2.9.3, which allows an attacker to upload an SVG file of a user's avatar...

The vulnerability of the Adobe SVG Native Viewer lies in the overflow of buffer in the queue, allowing an attacker to execute arbitrary code.

The vulnerability of the Adobe SVG Native Viewer is related to buffer overflow in the heap. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code in the context of the current user, using a specially crafted PDF file...