Exploit for Code Injection in Exiftool_Project Exiftool

CVE-2021-22204 - ExifTool Arbitrary Code Execution An upgrade...

Exploit for Code Injection in Exiftool_Project Exiftool

CVE-2021-22204 - ExifTool Arbitrary Code Execution An upgrade...

EUVD-2017-6050

Malware in sbrugna...

EUVD-2017-6051

Malware in sbrugna...

EUVD-2021-19337

Malware in sbrugna...

EUVD-2012-6383

Malware in sbrugna...

EUVD-2021-19339

Malware in sbrugna...

Unity Linux 20.1070e Security Update: djvulibre (UTSA-2025-680663)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-680663 advisory. A flaw was found in djvulibre-3.5.28 and earlier. A Stack overflow in function DJVU::DjVuDocument::getdjvufile via crafted djvu file may lead to application crash an...

Unity Linux 20.1070e Security Update: djvulibre (UTSA-2025-680661)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-680661 advisory. A flaw was found in djvulibre-3.5.28 and earlier. An integer overflow in function render in tools/ddjvu via crafted djvu file may lead to application crash and other...

Unity Linux 20.1070e Security Update: djvulibre (UTSA-2025-680664)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-680664 advisory. A flaw was found in djvulibre-3.5.28 and earlier. An out of bounds read in function DJVU::DataPool::hasdata via crafted djvu file may lead to application crash and...

CVE-2025-57248

A null pointer dereference vulnerability was discovered in SumatraPDF 3.5.2 during the processing of a crafted .djvu file. When the file is opened, the application crashes inside libmupdf.dll, specifically in the DataPool::hasdata function...

sumatrapdf 安全漏洞

sumatrapdf is a PDF reader from sumatrapdfreader open source. A security vulnerability exists in SumatraPDF version 3.5.2, which stems from the presence of a null pointer dereference when handling specially crafted djvu files, which could cause the application to crash...

USN-7631-1 djvulibre vulnerability

It was discovered that DjVuLibre incorrectly handled certain memory operations. If a user or automated system were tricked into processing a specially crafted DjVu file, a remote attacker could cause applications to stop responding or crash, resulting in a denial of service, or possibly execute...

CVE-2012-5006

Heap-based buffer overflow in npdjvu.dll in Caminova DjVu Browser Plug-in 6.1.4 Build 27351 and other versions before 6.1.4.27993 allows remote attackers to execute arbitrary code via a crafted Sjbz chunk in a djvu file...

SUSE CVE-2021-32491

A flaw was found in djvulibre-3.5.28 and earlier. An integer overflow in function render in tools/ddjvu via crafted djvu file may lead to application crash and other consequences...

SUSE CVE-2021-32492

A flaw was found in djvulibre-3.5.28 and earlier. An out of bounds read in function DJVU::DataPool::hasdata via crafted djvu file may lead to application crash and other consequences...

The vulnerability of the library for processing metadata in multimedia Exif files, related to incorrect elimination of special elements in the output data, allows attackers to gain access to confidential data, compromise its integrity, and cause service failures.

The vulnerability of the ExifTool library for processing metadata in multimedia files is related to incorrect elimination of special elements in the output data. Exploiting this vulnerability can allow an attacker to gain access to confidential data, compromise its integrity, and even cause servi...

GitLab 13.10.2 Remote Code Execution

Exploit Title: GitLab 13.10.2 - Remote Code Execution RCE Unauthenticated Shodan Dork: https://www.shodan.io/search?query=title%3A%22GitLab%22+%2B%22Server%3A+nginx%22 Date: 11/01/2021 Exploit Author: Jacob Baines Vendor Homepage: https://about.gitlab.com/ Software Link:...

GitLab 13.10.2 - Remote Code Execution Exploit

Exploit Title: GitLab 13.10.2 - Remote Code Execution RCE Unauthenticated Shodan Dork: https://www.shodan.io/search?query=title%3A%22GitLab%22+%2B%22Server%3A+nginx%22 Exploit Author: Jacob Baines Vendor Homepage: https://about.gitlab.com/ Software Link: https://gitlab.com/gitlab-org/gitlab...

The vulnerability of the sorting function in the library for viewing, creating, and editing DjVu files, related to an uncontrolled recursion, allows a hacker to cause service failures.

The vulnerability of the sorting function in the library for viewing, creating, and editing DjVu files in DjVuLibre is related to an uncontrolled recursion. Exploiting this vulnerability could allow a malicious actor to cause service failures...