14 matches found
CVE-2025-65875
An arbitrary file upload vulnerability in the AddFont function of FPDF v1.86 and earlier allows attackers to execute arbitrary code via uploading a crafted PHP file...
CVE-2025-65875
An arbitrary file upload vulnerability in the AddFont function of FPDF v1.86 and earlier allows attackers to execute arbitrary code via uploading a crafted PHP file...
EUVD-2025-206725
An arbitrary file upload vulnerability in the AddFont function of FPDF v1.86 and earlier allows attackers to execute arbitrary code via uploading a crafted PHP file...
CVE-2024-11583
The Borderless – Widgets, Elements, Templates and Toolkit for Elementor & Gutenberg plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the 'removezippedfont' function in all versions up to, and including, 1.5.9. This makes it possible for...
WordPress plugin Funnelforms Free 代码问题漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A code issue vulnerability exists i...
PT-2024-21359 · Swftools · Swftools
Name of the Vulnerable Software and Affected Versions: swftools version 0.9.2 Description: The issue is related to a segmentation violation in the s font function located at swftools/src/swfc.c. This violation can occur in swftools version 0.9.2. Recommendations: For swftools version 0.9.2, as a...
PT-2022-25819 · Dompdf · Dompdf
Name of the Vulnerable Software and Affected Versions: Dompdf versions prior to 2.0.1 Description: The issue allows remote file inclusion because a URI validation failure does not halt font registration, as demonstrated by a @font-face rule. This is related to the registerFont function in...
Xfig fig2dev 缓冲区错误漏洞
fig2dev is used to convert .fig files to various graphics languages and formats. A global buffer overflow vulnerability exists in putfont in genpict2e.c in fig2dev version 3.2.7b. An attacker could exploit this vulnerability to cause a denial of service by converting xfig files to pict2e format...
Accusoft ImageGear buffer overflow vulnerability (CNVD-2021-40761)
Accusoft ImageGear is a software development kit SDK for image processing from Accusoft, USA. A security vulnerability exists in ImageGear 19.9, which originates from a buffer overflow in the PDF process font function where a stack exists. An attacker can exploit the vulnerability to cause code...
Buffer overflow
An issue was discovered in post.trm in Gnuplot 5.2.5. This issue allows an attacker to conduct a buffer overflow with an arbitrary amount of data in the PSoptions function. This flaw is caused by a missing size check of an argument passed to the "set font" function. This issue occurs when the...
CVE-2018-19491
An issue was discovered in post.trm in Gnuplot 5.2.5. This issue allows an attacker to conduct a buffer overflow with an arbitrary amount of data in the PSoptions function. This flaw is caused by a missing size check of an argument passed to the "set font" function. This issue occurs when the...
Buffer overflow
An issue was discovered in cairo.trm in Gnuplot 5.2.5. This issue allows an attacker to conduct a buffer overflow with an arbitrary amount of data in the cairotrmoptions function. This flaw is caused by a missing size check of an argument passed to the "set font" function. This issue occurs when...
CVE-2018-19492
An issue was discovered in cairo.trm in Gnuplot 5.2.5. This issue allows an attacker to conduct a buffer overflow with an arbitrary amount of data in the cairotrmoptions function. This flaw is caused by a missing size check of an argument passed to the "set font" function. This issue occurs when...
CVE-2018-19492
An issue was discovered in cairo.trm in Gnuplot 5.2.5. This issue allows an attacker to conduct a buffer overflow with an arbitrary amount of data in the cairotrmoptions function. This flaw is caused by a missing size check of an argument passed to the "set font" function. This issue occurs when...