23 matches found
Unity Linux 20.1060e / 20.1070e Security Update: ImageMagick (UTSA-2026-017584)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017584 advisory. In the CropImage and CropImageToTiles routines of MagickCore/transform.c, rounding calculations performed on unconstrained pixel offsets was causing undefined behavi...
EUVD-2006-4351
Malware in sbrugna...
CVE-2023-40502
LG Simple Editor cropImage Directory Traversal Arbitrary File Deletion Vulnerability. This vulnerability allows remote attackers to delete arbitrary files on affected installations of LG Simple Editor. Authentication is not required to exploit this vulnerability. The specific flaw exists within t...
CVE-2023-40502
LG Simple Editor cropImage Directory Traversal Arbitrary File Deletion Vulnerability. This vulnerability allows remote attackers to delete arbitrary files on affected installations of LG Simple Editor. Authentication is not required to exploit this vulnerability. The specific flaw exists within t...
CVE-2023-40502
LG Simple Editor cropImage Directory Traversal Arbitrary File Deletion Vulnerability. This vulnerability allows remote attackers to delete arbitrary files on affected installations of LG Simple Editor. Authentication is not required to exploit this vulnerability. The specific flaw exists within t...
CVE-2023-40502 LG Simple Editor cropImage Directory Traversal Arbitrary File Deletion Vulnerability
LG Simple Editor cropImage Directory Traversal Arbitrary File Deletion Vulnerability. This vulnerability allows remote attackers to delete arbitrary files on affected installations of LG Simple Editor. Authentication is not required to exploit this vulnerability. The specific flaw exists within t...
CVE-2023-40502
LG Simple Editor cropImage Directory Traversal Arbitrary File Deletion Vulnerability affects LG Simple Editor. The flaw stems from improper validation of a user-supplied path in the cropImage command, allowing remote attackers to delete arbitrary files with SYSTEM context. Affected components inc...
CVE-2023-40502 LG Simple Editor cropImage Directory Traversal Arbitrary File Deletion Vulnerability
LG Simple Editor cropImage Directory Traversal Arbitrary File Deletion Vulnerability. This vulnerability allows remote attackers to delete arbitrary files on affected installations of LG Simple Editor. Authentication is not required to exploit this vulnerability. The specific flaw exists within t...
The vulnerability lies in the cropImage function of the software tool for creating and distributing content with LG Simple Editor. This function allows a malicious user to delete any files they desire.
The vulnerability of the cropImage function in the software for creating and distributing content with LG Simple Editor arises due to a typing error during the processing of command-line arguments that handle directory traversal. Exploiting this vulnerability allows an attacker to send specially...
The vulnerability of the CropImage() and CropImageToTiles() procedures in the MagickCore/transform.c component of the ImageMagick console-based graphic editor allows a hacker to trigger a service failure. This vulnerability is related to the possibility of integer overflow, which can be exploited by attackers.
The vulnerability of the CropImage and CropImageToTiles functions in the MagickCore/transform.c component of the ImageMagick console-based graphics editor allows for numerical overflow. Exploiting this vulnerability enables a remote attacker to cause a service failure...
CVE-2020-25675
In the CropImage and CropImageToTiles routines of MagickCore/transform.c, rounding calculations performed on unconstrained pixel offsets was causing undefined behavior in the form of integer overflow and out-of-range values as reported by UndefinedBehaviorSanitizer. Such issues could cause a...
Integer overflow
In the CropImage and CropImageToTiles routines of MagickCore/transform.c, rounding calculations performed on unconstrained pixel offsets was causing undefined behavior in the form of integer overflow and out-of-range values as reported by UndefinedBehaviorSanitizer. Such issues could cause a...
UBUNTU-CVE-2020-25675
In the CropImage and CropImageToTiles routines of MagickCore/transform.c, rounding calculations performed on unconstrained pixel offsets was causing undefined behavior in the form of integer overflow and out-of-range values as reported by UndefinedBehaviorSanitizer. Such issues could cause a...
CVE-2020-25675
In the CropImage and CropImageToTiles routines of MagickCore/transform.c, rounding calculations performed on unconstrained pixel offsets was causing undefined behavior in the form of integer overflow and out-of-range values as reported by UndefinedBehaviorSanitizer. Such issues could cause a...
ImageMagick Studio ImageMagick and Sanitize Input Validation Error Vulnerability
Imagemagick Studio ImageMagick is a suite of open source image processing software from Imagemagick Studio, USA. The software can read, convert, or write images in a variety of formats.Sanitize is an HTML and CSS cleaner by Ryan Grove, an individual developer in the United States, which supports...
CVE-2020-25675
In the CropImage and CropImageToTiles routines of MagickCore/transform.c, rounding calculations performed on unconstrained pixel offsets was causing undefined behavior in the form of integer overflow and out-of-range values as reported by UndefinedBehaviorSanitizer. Such issues could cause a...
Mambo cropimage Component <= 1.0 - Remote File Include Vulnerability
No description provided by source. !/usr/bin/env python coding: utf-8 import re from pocsuite.net import req from pocsuite.poc import Output, POCBase from pocsuite.utils import register class MambocropimageComponentRemoteFileIncludePOCBase: vulID = '63857' version = '1' vulDate = '2006-08-19'...
Mambo CropImage mosConfig_absolute_path远程文件包含漏洞
Mambo CropImage是一款基于PHP的WEB应用程序。 Mambo CropImage不正确过滤用户提交的URI数据,远程攻击者可以利用漏洞以WEB进程权限执行任意命令。 问题是'admin.cropcanvas.php'脚本对用户提交的'cropimagedir'参数缺少过滤,提交恶意的远程服务器作为包含对象,可导致以WEB进程权限执行任意PHP代码。 CropImage CropImage 1.0 beta [email protected]...
CVE-2006-4363
In CVE-2006-4363, the CropImage component (com_cropimage) for Mambo 1.0 is affected. The vulnerability is a PHP remote file inclusion in admin.cropcanvas.php, exploitable via a URL in the cropimagedir parameter, allowing arbitrary PHP code execution on the server. Root cause: unvalidated input fr...
Mambo cropimage Component <= 1.0 Remote File Include Vulnerability
Exploit for unknown platform in category web applications ================================================================== Mambo cropimage Component = 1.0 Remote File Include Vulnerability ================================================================== C Y B E R - W A R R I O R T I M Mambo...