CVE-2026-49328

Server-Side Request Forgery SSRF in the UrlImageConverter component of Apache Fesod Incubating fesod-sheet before 2.0.2-incubating allows attackers to cause outbound network requests to internal or otherwise restricted resources via a user-supplied image URL. Users are recommended to upgrade to...

CVE-2026-49328

Server-Side Request Forgery SSRF in the UrlImageConverter component of Apache Fesod Incubating fesod-sheet before 2.0.2-incubating allows attackers to cause outbound network requests to internal or otherwise restricted resources via a user-supplied image URL. Users are recommended to upgrade to...

CVE-2026-49328 Apache Fesod (Incubating): Improper validation of user-supplied URLs leading to SSRF

Server-Side Request Forgery SSRF in the UrlImageConverter component of Apache Fesod Incubating fesod-sheet before 2.0.2-incubating allows attackers to cause outbound network requests to internal or otherwise restricted resources via a user-supplied image URL. Users are recommended to upgrade to...

Apache Fesod 安全漏洞

Apache Fesod is a high-performance spreadsheet file reading and writing library developed by the Apache Foundation in the United States. Versions of Apache Fesod prior to 2.0.2-incubating contained security vulnerabilities. These vulnerabilities were caused by a request forgeing issue in the...

PT-2026-45399

Name of the Vulnerable Software and Affected Versions Apache Fesod Incubating fesod-sheet versions prior to 2.0.2-incubating Description Server-Side Request Forgery SSRF in the UrlImageConverter component allows attackers to trigger outbound network requests to internal or restricted resources by...

EUVD-2007-6350

Malware in sbrugna...

BiliupApi (>=0.1.0 <=0.1.7), EZDB (>=0.1.13 <=0.1.15) +1445 more potentially affected by unknown CVE via adler (>=0.2.3 <=1.0.2)

adler CARGO version =0.2.3, =0.1.0, =0.1.13, =0.1.0, =0.6.0-beta.1, =0.6.0-beta.1, =0.6.0-beta.1, =0.1.5, =0.21.0-alpha.1, =0.0.1-dev.10, =0.4.0, =4.0.1-alpha.1, =0.2.0, =0.1.0, =0.2.0 and more Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2025-0056...

CVE-2021-26699

OX App Suite before 7.10.3-rev4 and 7.10.4 before 7.10.4-rev4 allows SSRF via a shared SVG document that is mishandled by the imageconverter component when the .png extension is used...

MimeTeX 安全漏洞

MimeTeX is an image converter from the individual developer John Forkosh. A security vulnerability exists in versions prior to MimeTeX v1.77, which stems from specially crafted scripts that lead to the execution of arbitrary code...

ImageX Image Converter Cross Site Request Forgery

ImageX Image Converter suffers from a cross site request forgery vulnerability that allows you to add an administrator. This software does not list a version but was reported as of March 03, 2025 to be vulnerable. Exploit Title: ImageX - Image Converter - Cross Site Request Forgery CSRF Add Admin...

Design/Logic Flaw

Requests to fetch image metadata could be abused to include SQL queries that would be executed unchecked. Exploiting this vulnerability requires at least access to adjacent networks of the imageconverter service, which is not exposed to public networks by default. Arbitrary SQL statements could b...

编号撤回

XpdfReader is XpdfReader open source a free PDF viewer and toolkit . Including text extractor , image converter , HTML converter and so on. This CVE number has been withdrawn...

tifig 资源管理错误漏洞

tifig is a Monostream open source fast HEIF image converter for thumbnails. A security vulnerability exists in tifig version v0.2.2, which stems from a heap-release reuse of its temInfoEntry function...

tifig 安全漏洞

tifig is Monostream open source a fast HEIF image converter for thumbnails. tifig v0.2.2 version has a security vulnerability , the vulnerability stems from its /asan/asannewdelete.cpp component in the new has a memory leak...

[SECURITY] Fedora 36 Update: chafa-1.8.0-4.fc36

Chafa is a command-line utility that converts all kinds of images, including animated image formats like GIFs, into ANSI/Unicode character output that can be displayed in a terminal. It is highly configurable, with support for alpha transparency and multiple color modes and color spaces, combinin...

DLL Hijacking Vulnerability in HEIC Image Converter (Windows Client)

HEIC Image Converter is a heic format conversion software that focuses on heic format conversion. HEIC Image Converter Windows Client suffers from a DLL hijacking vulnerability, which can be exploited by attackers to gain server control privileges...

Magical Image Converter and Processor (Windows Edition) Denial of Service Vulnerability

Magic Image Processing Software is a professional, easy-to-use and efficient image processing software toolset developed by Beijing Magic Pixel Technology Co. A denial of service vulnerability exists in Miracle Image Converter windows version, which can be exploited by attackers to cause a softwa...

Denial of Service Vulnerability in Magical Image Conversion Processing Software (windows version) (CNVD-2020-75027)

Magic Image Processing Software is a professional, easy-to-use and efficient image processing software toolset developed by Beijing Magic Pixel Technology Co. A denial of service vulnerability exists in Miracle Image Converter windows version, which can be exploited by attackers to cause the...

Lightning Apple HEIC Image Converter suffers from dll hijacking vulnerability

Lightning Apple HEIC Picture Converter is the picture multimedia software of Jiangxia Technology. Lightning Apple HEIC Image Converter has a dll hijacking vulnerability that can be exploited by attackers to execute arbitrary code...

Memory Corruption Vulnerability in iPubsoft PDF to Image Converter

iPubsoft PDF to Image Converter is a PDF processing tool. A memory corruption vulnerability exists in iPubsoft PDF to Image Converter, which can be exploited by attackers to crash the program by constructing malformed PDF files...