EUVD-2022-4708

Malicious code in bioql PyPI...

EUVD-2022-2658

Malicious code in bioql PyPI...

CVE-2025-6065

The Image Resizer On The Fly plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the 'delete' task in all versions up to, and including, 1.1. This makes it possible for unauthenticated attackers to delete arbitrary files on the server, which c...

CVE-2025-6065

The Image Resizer On The Fly plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the 'delete' task in all versions up to, and including, 1.1. This makes it possible for unauthenticated attackers to delete arbitrary files on the server, which c...

CVE-2025-6065 Image Resizer On The Fly <= 1.1 - Unauthenticated Arbitrary File Deletion

The Image Resizer On The Fly plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the 'delete' task in all versions up to, and including, 1.1. This makes it possible for unauthenticated attackers to delete arbitrary files on the server, which c...

WordPress Image Resizer On The Fly plugin <= 1.1 - Unauthenticated Arbitrary File Deletion vulnerability

Unauthenticated Arbitrary File Deletion vulnerability discovered by theviper17y in WordPress Plugin Image Resizer On The Fly versions = 1.1...

WordPress plugin Image Resizer On The Fly 路径遍历漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A path traversal vulnerability exists ...

PT-2025-25482 · WordPress · Image Resizer On The Fly

Name of the Vulnerable Software and Affected Versions: Image Resizer On The Fly plugin for WordPress versions up to, and including, 1.1 Description: The issue is related to insufficient file path validation in the 'delete' task, allowing unauthenticated attackers to delete arbitrary files on the...

CVE-2020-13458

An issue was discovered in the Image Resizer plugin before 2.0.9 for Craft CMS. There are CSRF issues with the log-clear controller action...

CVE-2020-13459

An issue was discovered in the Image Resizer plugin before 2.0.9 for Craft CMS. There is stored XSS in the Bulk Resize action...

CVE-2024-27950

Missing Authorization vulnerability in sirv.Com Image Optimizer, Resizer and CDN – Sirv.This issue affects Image Optimizer, Resizer and CDN – Sirv: from n/a through 7.2.0...

Heap-based Buffer Overflow

Overview ImageResizer.Plugins.FreeImage is an ImageResizer.Plugins.FreeImage contains several plugins, all based around the abilities offered by the C/C++ FreeImage library. These plugins are alpha-level. Affected versions of this package are vulnerable to Heap-based Buffer Overflow when the...

Image Resizer Cross-site Scripting (XSS) in the Bulk Resize action

An issue was discovered in the Image Resizer plugin before 2.0.9 for Craft CMS. There is stored XSS in the Bulk Resize action...

GHSA-P7RM-GH9G-5FR8 Image Resizer Cross-site Scripting (XSS) in the Bulk Resize action

An issue was discovered in the Image Resizer plugin before 2.0.9 for Craft CMS. There is stored XSS in the Bulk Resize action...

GHSA-5V5Q-3M7M-97J7 Image Resizer Cross-Site Request Forgery (CSRF)

An issue was discovered in the Image Resizer plugin before 2.0.9 for Craft CMS. There are CSRF issues with the log-clear controller action...

Image Resizer Cross-Site Request Forgery (CSRF)

An issue was discovered in the Image Resizer plugin before 2.0.9 for Craft CMS. There are CSRF issues with the log-clear controller action...

Fedora: Security Advisory for converseen (FEDORA-2021-b58af96f33)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Denial Of Service (DoS)

tensorflow is vulnerable to denial of service attacks. The vulnerability exists in 'ValidateAndCreateOutput' of 'imageresizerstate.h' due to lack of validation. Large input arguments result in large number of elements in the output tensor causes an overflow resulting an application crash...

Image Resizer Cross-Site Request Forgery Vulnerability

Pixel & Tonic Craft CMS is a content management system CMS of Pixel & Tonic, Inc. Image Resizer is one of the image editing plug-ins. A cross-site request forgery vulnerability exists in Image Resizer versions prior to 2.0.9 for Pixel & Tonic Craft CMS. A remote attacker could exploit this...

Image Resizer Cross-Site Scripting Vulnerability

Pixel & Tonic Craft CMS is a content management system CMS of Pixel & Tonic, Inc. Image Resizer is one of the image editing plug-ins. A cross-site scripting vulnerability exists in Image Resizer versions prior to 2.0.9 for Pixel & Tonic Craft CMS. The vulnerability stems from a lack of proper...