pypdf 安全漏洞

pypdf is an open-source, free, and pure Python PDF library developed by py-pdf. It allows for splitting, merging, cropping, and converting pages of PDF files. Prior to version 6.12.0, pypdf had security vulnerabilities. These vulnerabilities stemmed from the use of cross-references involving valu...

Server-side Request Forgery (SSRF)

Overview @frontmcp/sdk is a FrontMCP SDK Affected versions of this package are vulnerable to Server-side Request Forgery SSRF in the initialize process. An attacker can access internal network resources or sensitive local files by submitting a crafted OpenAPI specification containing malicious $r...

EUVD-2025-28577

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2025-55005

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.2-1, when preparing to transform from Log to...

SUSE CVE-2025-55005

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.2-1, when preparing to transform from Log to sRGB colorspaces, the logmap construction fails to handle cases where the reference-black or reference-white value is larger than 1024...

DEBIAN-CVE-2025-55005

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.2-1, when preparing to transform from Log to sRGB colorspaces, the logmap construction fails to handle cases where the reference-black or reference-white value is larger than 1024...

CVE-2025-55005

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.2-1, when preparing to transform from Log to sRGB colorspaces, the logmap construction fails to handle cases where the reference-black or reference-white value is larger than 1024...

CVE-2025-55005 ImageMagick: heap-buffer overflow in log colorspace handling

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.2-1, when preparing to transform from Log to sRGB colorspaces, the logmap construction fails to handle cases where the reference-black or reference-white value is larger than 1024...

Red Hat Ansible Automation Platform 代码注入漏洞

Red Hat Ansible Automation Platform Red Hat AAP is a unified solution for enabling strategic automation from Red Hat USA. A code injection vulnerability exists in Red Hat Ansible Automation Platform that stems from unvalidated user-supplied Git branches or reference values, which could lead to...

PT-2025-32996

Name of the Vulnerable Software and Affected Versions: ImageMagick versions prior to 7.1.2-1 Description: ImageMagick is software used for editing and manipulating digital images. A memory corruption issue occurs when preparing to transform from Log to sRGB colorspaces, specifically when the...

Astra Linux - уязвимость в imagemagick

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.2-1, when preparing to transform from Log to sRGB colorspaces, the logmap construction fails to handle cases where the reference-black or reference-white value is larger than 1024...

Jenkins Active Choices 跨站脚本漏洞

Jenkins Active Choices is a Jenkins open source application plugin . Used in parameterized freestyle Jenkins jobs to create scripted , dynamic and interactive job parameters. A cross-site script execution vulnerability exists in Jenkins Active Choices Plugin 2.5.2 and earlier versions. The...