Lucene search
+L

10 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 6:27 a.m.6 views

CVE-2024-48514

php-heic-to-jpg = 1.0.5 is vulnerable to code injection fixed in 1.0.6. An attacker who can upload heic images is able to execute code on the remote server via the file name. As a result, the CIA is no longer guaranteed. This affects php-heic-to-jpg 1.0.5 and below...

9.8CVSS7.6AI score0.00961EPSS
Exploits1References1
Github Security Blog
Github Security Blog
added 2024/10/24 6:30 p.m.17 views

Remote code execution in php-heic-to-jpg

php-heic-to-jpg 1.0.5 is vulnerable to remote code execution. An attacker who can upload heic images is able to execute code on the remote server via the file name. As a result, the CIA is no longer guaranteed. This affects php-heic-to-jpg below 1.0.5...

9.8CVSS9.7AI score0.00961EPSS
Exploits1References6Affected Software1
OSV
OSV
added 2024/10/24 6:30 p.m.11 views

GHSA-G8V9-C8M3-942V Remote code execution in php-heic-to-jpg

php-heic-to-jpg 1.0.5 is vulnerable to remote code execution. An attacker who can upload heic images is able to execute code on the remote server via the file name. As a result, the CIA is no longer guaranteed. This affects php-heic-to-jpg below 1.0.5...

9.8CVSS9.8AI score0.00961EPSS
Exploits1References6
NVD
NVD
added 2024/10/24 6:15 p.m.17 views

CVE-2024-48514

php-heic-to-jpg = 1.0.5 is vulnerable to code injection fixed in 1.0.6. An attacker who can upload heic images is able to execute code on the remote server via the file name. As a result, the CIA is no longer guaranteed. This affects php-heic-to-jpg 1.0.5 and below...

9.8CVSS0.00961EPSS
Exploits1References4
OSV
OSV
added 2024/10/24 6:15 p.m.5 views

CVE-2024-48514

php-heic-to-jpg = 1.0.5 is vulnerable to code injection fixed in 1.0.6. An attacker who can upload heic images is able to execute code on the remote server via the file name. As a result, the CIA is no longer guaranteed. This affects php-heic-to-jpg 1.0.5 and below...

9.8CVSS6AI score0.00961EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2024/10/24 12:0 a.m.10 views

CVE-2024-48514

php-heic-to-jpg = 1.0.5 is vulnerable to code injection fixed in 1.0.6. An attacker who can upload heic images is able to execute code on the remote server via the file name. As a result, the CIA is no longer guaranteed. This affects php-heic-to-jpg 1.0.5 and below...

7.6AI score0.00961EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2024/10/24 12:0 a.m.9 views

PT-2024-33130 · Unknown · Php-Heic-To-Jpg

Name of the Vulnerable Software and Affected Versions: php-heic-to-jpg versions 1.0.5 and below Description: The issue allows an attacker who can upload heic images to execute code on the remote server via the file name, resulting in a loss of confidentiality, integrity, and availability...

9.8CVSS7.8AI score0.00961EPSS
Exploits1References8
Cvelist
Cvelist
added 2024/10/24 12:0 a.m.22 views

CVE-2024-48514

php-heic-to-jpg = 1.0.5 is vulnerable to code injection fixed in 1.0.6. An attacker who can upload heic images is able to execute code on the remote server via the file name. As a result, the CIA is no longer guaranteed. This affects php-heic-to-jpg 1.0.5 and below...

0.00961EPSS
Exploits1References4
CNNVD
CNNVD
added 2024/10/24 12:0 a.m.7 views

php-heic-to-jpg 安全漏洞

php-heic-to-jpg is an image format conversion library by the individual developer of Revaz Gh. A security vulnerability exists in php-heic-to-jpg version 1.0.5 and earlier versions. An attacker can exploit the vulnerability to execute code on a remote server by filename...

9.8CVSS7.1AI score0.00961EPSS
Exploits1References4
CVE
CVE
added 2024/10/24 12:0 a.m.51 views

CVE-2024-48514

CVE-2024-48514 affects php-heic-to-jpg

9.8CVSS9.7AI score0.00961EPSS
Exploits1References4
Rows per page
Query Builder