Lucene search
+L

106 matches found

NVD
NVD
added 2026/05/14 9:16 p.m.47 views

CVE-2026-44666

HRConvert2 is a self-hosted, drag-and-drop & nosql file conversion server & share tool. Prior to 3.3.8, the sanitizeString function in convertCore.php is missing backtick and tab \t from its strip list. User input then reaches shellexec, where the shell interprets these characters and commands...

9.3CVSS0.00297EPSS
Exploits0References2
EUVD
EUVD
added 2026/05/14 8:32 p.m.18 views

EUVD-2026-30480

HRConvert2 is a self-hosted, drag-and-drop & nosql file conversion server & share tool. Prior to 3.3.8, the sanitizeString function in convertCore.php is missing backtick and tab \t from its strip list. User input then reaches shellexec, where the shell interprets these characters and commands...

9.3CVSS5.8AI score0.00297EPSS
Exploits0References2
OSV
OSV
added 2026/04/23 9:58 p.m.3 views

CVE-2026-41355 OpenClaw < 2026.3.28 - Arbitrary Code Execution via Mirror Mode Sandbox File Conversion

OpenClaw before 2026.3.28 contains an arbitrary code execution vulnerability in mirror mode that converts untrusted sandbox files into workspace hooks. Attackers with mirror mode access can execute arbitrary code on the host during gateway startup by exploiting enabled workspace hooks...

5.4CVSS6.7AI score0.00123EPSS
Exploits0References5
Snyk
Snyk
added 2026/02/24 3:28 p.m.7 views

Allocation of Resources Without Limits or Throttling

Overview Magick.NET-Q8-x64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

8.7CVSS6AI score0.00401EPSS
Exploits0References2
Snyk
Snyk
added 2026/02/24 3:28 p.m.6 views

Allocation of Resources Without Limits or Throttling

Overview Magick.NET-Q16-x64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

8.7CVSS6AI score0.00401EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2018-9188

Malware in sbrugna...

6.5CVSS7.8AI score0.01312EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-14450

Malware in sbrugna...

5.5CVSS6AI score0.00853EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2018-9186

Malware in sbrugna...

6.5CVSS7.3AI score0.01272EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2017-6825

Malware in sbrugna...

5.5CVSS5.7AI score0.01629EPSS
Exploits1References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2012-2111

Malware in sbrugna...

9.3CVSS6.1AI score0.06596EPSS
Exploits0References12
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-9192

Malware in sbrugna...

6.5CVSS7.7AI score0.0128EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.9 views

EUVD-2025-21388

Malicious code in bioql PyPI...

7.5CVSS6.2AI score0.00707EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.9 views

EUVD-2024-1328

Malicious code in bioql PyPI...

9.8CVSS9.3AI score0.02879EPSS
Exploits1References4
OSV
OSV
added 2025/08/11 9:56 p.m.5 views

CVE-2025-55151 Stirling-PDF SSRF vulnerability on /api/v1/convert/file/pdf

Stirling-PDF is a locally hosted web application that performs various operations on PDF files. Prior to version 1.1.0, the "convert file to pdf" functionality /api/v1/convert/file/pdf uses LibreOffice's unoconvert tool for conversion, and SSRF vulnerabilities exist during the conversion process...

8.6CVSS6.8AI score0.00355EPSS
Exploits0References4
Veracode
Veracode
added 2025/08/04 7:26 a.m.4 views

Denial Of Service (DoS)

ImageMagick is vulnerable to Denial Of Service DoS. The vulnerability is due to infinite line generation during a specific XMP file conversion command...

7.5CVSS5.8AI score0.00707EPSS
Exploits1References7Affected Software19
OSV
OSV
added 2025/07/23 8:3 p.m.7 views

GHSA-VMHH-8RXQ-FP9G ImageMagick has XMP profile write that triggers hang due to unbounded loop

Summary Infinite lines occur when writing during a specific XMP file conversion command Details 0 GetXmpNumeratorAndDenominator denominator=, numerator=, value= at MagickCore/profile.c:2578 1 GetXmpNumeratorAndDenominator denominator=, numerator=, value=720000000000000 at MagickCore/profile.c:256...

7.5CVSS5.9AI score0.00707EPSS
Exploits1References7
Debian CVE
Debian CVE
added 2025/07/14 7:31 p.m.9 views

CVE-2025-53015

ImageMagick is free and open-source software used for editing and manipulating digital images. In versions prior to 7.1.2-0, infinite lines occur when writing during a specific XMP file conversion command. Version 7.1.2-0 fixes the issue...

7.5CVSS5.2AI score0.00707EPSS
Exploits1
OSV
OSV
added 2025/07/14 7:31 p.m.6 views

CVE-2025-53015 ImageMagick has XMP profile write that triggers hang due to unbounded loop

ImageMagick is free and open-source software used for editing and manipulating digital images. In versions prior to 7.1.2-0, infinite lines occur when writing during a specific XMP file conversion command. Version 7.1.2-0 fixes the issue...

7.5CVSS6.2AI score0.00707EPSS
Exploits1References4
CNNVD
CNNVD
added 2025/07/14 12:0 a.m.4 views

ImageMagick 安全漏洞

ImageMagick is a suite of open source image processing software from ImageMagick Open Source. It can read, convert or write images in many formats. A security vulnerability exists in versions prior to ImageMagick 7.1.2-0 that stems from an infinite loop in a specific XMP file conversion command...

7.5CVSS6.2AI score0.00707EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2025/07/14 12:0 a.m.10 views

PT-2025-29506

Name of the Vulnerable Software and Affected Versions: ImageMagick versions prior to 7.1.2-0 Description: ImageMagick is free and open-source software used for editing and manipulating digital images. Versions prior to 7.1.2-0 experience infinite lines during a specific XMP file conversion comman...

9.8CVSS5AI score0.04065EPSS
Exploits10References95
Rows per page
Query Builder