EUVD-2026-36164

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-48 and 7.1.2-23, when reading multiple images with different dimensions an out of bounds heap write can occur. This issue has been patched in versions 6.9.13-48 and 7.1.2-23...

Out-of-bounds Write

Overview Magick.NET-Q16-HDRI-OpenMP-arm64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this...

CVE-2026-42050

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to 7.1.2-21 and 6.9.13-46, a malicious MIFF file could trigger an overflow when a user opens it in the display tool and right-clicks a tile to invoke the Load / Update menu item. This vulnerabilit...

CVE-2026-42050

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to 7.1.2-21 and 6.9.13-46, a malicious MIFF file could trigger an overflow when a user opens it in the display tool and right-clicks a tile to invoke the Load / Update menu item. This vulnerabilit...

Missing Release of Memory after Effective Lifetime

Overview Magick.NET-Q16-arm64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

ImageMagick has a memory leak in PNG encoder when writing a MNG image

When the PNG encoder fails to write an MNG image it can leak memory...

GHSA-98CP-RJ9F-6V5G ImageMagick has has a stack-buffer-overflow in MNG encoder with oversized pallete

The patch for GHSA-7h7q-j33q-hvpf was incomplete and still allows a stack buffer overflow for the multi frame images...

CVE-2023-22672

Cross-Site Request Forgery CSRF vulnerability in Mr.Vibe vSlider Multi Image Slider for WordPress plugin = 4.1.2 versions...

CVE-2023-22672

CVE-2023-22672 describes a Cross-Site Request Forgery (CSRF) vulnerability in the WordPress plugin Mr.Vibe vSlider Multi Image Slider for WordPress (plugin slug vslider) affecting versions 4.1.2 when a patch is available from the vendor or plugin repository or monitor for an official fix.

WordPress Plugin vSlider Multi Image Slider 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site request forgery...

WordPress plugin vSlider Multi Image Slider for WordPress 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting vulnerabilit...

WordPress vSlider Multi Image Slider for WordPress Plugin <= 4.1.2 is vulnerable to Cross Site Request Forgery (CSRF)

Software vSlider Multi Image Slider for WordPress Type Plugin Vulnerable versions = 4.1.2 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-22672 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID ebfb8daaae94...

WordPress vSlider Multi Image Slider for WordPress Plugin <= 4.1.2 is vulnerable to Cross Site Scripting (XSS)

Software vSlider Multi Image Slider for WordPress Type Plugin Vulnerable versions = 4.1.2 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-25797 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 7d1d8d3cc565 Credits...

Code injection

An issue in \Roaming\Mango\Plugins of University of Texas Multi-image Analysis GUI Mango 4.1 allows attackers to escalate privileges via crafted plugins...

Multi-image Analysis GUI 安全漏洞

Multi-image Analysis GUI Mango is a viewer of medical research images organized by the University of Texas Health Science Center. A security vulnerability in University of Texas Health Science Center Multi-image Analysis GUI version 4.1, which stems from an issue in RoamingMangoPlugins allows...

The vulnerability of the GraphicsMagick graphic editor, related to the lack of checks for division by zero, allows a hacker to trigger a service failure.

The vulnerability of the GraphicsMagick graphic editor is related to an error that causes division by zero when reading MNG images from the png.c file. Exploiting this vulnerability can allow a remote attacker to cause the application to terminate abnormally using a specially crafted image...