CVE-2026-22600 OpenProject is Vulnerable to Arbitrary File Read via ImageMagick SVG Coder

OpenProject is an open-source, web-based project management software. A Local File Read LFR vulnerability exists in the work package PDF export functionality of OpenProject prior to version 16.6.4. By uploading a specially crafted SVG file disguised as a PNG as a work package attachment, an...

CVE-2023-53900 Spip 4.1.10 Admin Account Spoofing via Malicious SVG Upload

Spip 4.1.10 contains a file upload vulnerability that allows attackers to upload malicious SVG files with embedded external links. Attackers can trick administrators into clicking a crafted SVG logo that redirects to a potentially dangerous URL through improper file upload filtering...

SUSE CVE-2025-11679

Out-of-bounds Read in lwsupngemitnextline in warmcat libwebsockets allows, when the LWSWITHUPNG flag is enabled during compilation and the HTML display stack is used, to read past a heap allocated buffer possibly causing a crash, when the user visits an attacker controlled website that contains a...

EUVD-2025-33926

A security flaw has been discovered in Total.js Flow up to 673ef9144dd25d4f4fd4fdfda5af27f230198924. The impacted element is an unknown function of the component SVG File Handler. Performing manipulation results in unrestricted upload. The attack can be initiated remotely. The exploit has been...

Exploit for CVE-2025-32682

🐚 CVE-2025-32682 - Arbitrary File Upload in MapSVG Lite --...

CVE-2024-13805

The Advanced File Manager — Ultimate WordPress File Manager and Document Library Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 5.2.14 due to insufficient input sanitization and output escaping. This makes it...

CVE-2023-42049

PDF-XChange Editor EMF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target...

SUSE CVE-2014-9815

ImageMagick allows remote attackers to cause a denial of service application crash via a crafted wpg file...

CVE-2022-32074

A stored cross-site scripting XSS vulnerability in the component audit/class.audit.php of osTicket-plugins - Storage-FS before commit a7842d494889fd5533d13deb3c6a7789768795ae allows attackers to execute arbitrary web scripts or HTML via a crafted SVG file...

CVE-2021-29367

A buffer overflow vulnerability in WPG+0x1dda of Irfanview 4.57 allows attackers to execute arbitrary code via a crafted WPG file...

Samsung SMR 输入验证错误漏洞

Samsung SMR is a system patch package from Samsung South Korea. The patch program is provided for Samsung mobile applications. Samsung SMR suffers from an Input Validation Error vulnerability that stems from an Input Validation Error vulnerability in the DSP driver when loading graphic files prio...

The vulnerability of the WriteTIFFImage function in the program for reading and editing ImageMagick graphic files involves reading data beyond the allowed buffer limits. This allows attackers to access confidential information or cause service interruptions.

The vulnerability of the WriteTIFFImage function in the ImageMagick program, which is used for reading and editing graphic files, relates to the reading of data beyond the allowed buffer limits. Exploiting this vulnerability allows a malicious actor to gain access to confidential information or t...

Microsoft Excel 95-2004 Malformed Graphic File Code Execution Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/16181/info Microsoft Excel is susceptible to a code-execution vulnerability. The issue presents itself when Excel tries to process malformed or corrupted XLS files. Attackers may exploit this issue to execute arbitrary...

Attackers Targeting MS13-055 IE Vulnerability

Attackers are using an Internet Explorer vulnerability, which Microsoft patched yesterday, in targeted attacks that also employ a malicious Flash file installed through a drive-by download launched by compromised Web pages. The exploit that’s being used is capable of bypassing both ASLR and DEP...

CentOS 4 : netpbm (CESA-2005:793)

Updated netpbm packages that fix a security issue are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The netpbm package contains a library of functions that support programs for handling various graphics file formats, including...

FUD Forum < 2.7.1 PHP code injection vurnelability

Avatar upload in FUD Forum 2.7.1 may be tricked to upload a PHP file. To do so merge a graphic avatar file with a PHP file. cat foo.png foo.php uploadme.php under linux/unix. On win try notepat :...

CVE-2003-0141

CVE-2003-0141 involves RealOne Player 6.0.11.x and earlier and RealPlayer 8/RealPlayer Plus 8 6.0.9.584 (and related RealPlayer variants) where the PNG deflate algorithm can trigger heap corruption by processing a PNG containing compressed data using fixed trees with length values 286–287, treate...

Overflow in Outlook Express 4.* - too long filenames with graphic format extension

==== APPLICATION AFFECTED Outlook Express 4. 5. is not affected ==== DESCRIPTION All attached graphic files are automatically shown in the Outlook Express while viewing the e-mail. The problem is that long filenames with .jpg .bmp extension makes overflow if filename lenght is longer then 256...