20 matches found
Astra Linux - уязвимость в imagemagick
A flaw was discovered in ImageMagick version 7.0.11. In this version, an integer overflow in the WriteTHUMBNAILImage function in the coders/thumbnail.c file may lead to undefined behavior when processing a specially crafted image file submitted by an attacker. The greatest threat posed by this...
EUVD-2024-47560
Malicious code in bioql PyPI...
CLSA-2025-1758195721 ImageMagick: Fix of 4 CVEs
CVE-2025-55154: fix integer overflows in MNG magnification - CVE-2025-55212: fix division by zero in ThumbnailImage - CVE-2025-57803: fix 32-bit integer overflow when writing BMP scanline stride - CVE-2025-55298: fix format string bug leading to RCE or heap overflow...
CVE-2025-55212 ImageMagick affected by divide-by-zero in ThumbnailImage via montage -geometry ":" leads to crash
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-28 and 7.1.2-2, passing a geometry string containing only a colon ":" to montage -geometry leads GetGeometry to set width/height to 0. Later, ThumbnailImage divides by these zer...
Division by zero
Overview Affected versions of this package are vulnerable to Division by zero via the ThumbnailImage function in MagickCore/resize.c. An attacker can cause a crash by submitting specially crafted input that triggers a division by zero. Remediation A fix was pushed into the master branch but not y...
CVE-2025-55212 ImageMagick affected by divide-by-zero in ThumbnailImage via montage -geometry ":" leads to crash
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-28 and 7.1.2-2, passing a geometry string containing only a colon ":" to montage -geometry leads GetGeometry to set width/height to 0. Later, ThumbnailImage divides by these zer...
CVE-2025-55212 ImageMagick affected by divide-by-zero in ThumbnailImage via montage -geometry ":" leads to crash
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-28 and 7.1.2-2, passing a geometry string containing only a colon ":" to montage -geometry leads GetGeometry to set width/height to 0. Later, ThumbnailImage divides by these zer...
ImageMagick affected by divide-by-zero in ThumbnailImage via montage -geometry ":" leads to crash
Summary Passing a geometry string containing only a colon ":" to montage -geometry leads GetGeometry to set width/height to 0. Later, ThumbnailImage divides by these zero dimensions, triggering a crash SIGFPE/abort, resulting in a denial of service. Details Root Cause 1. montage -geometry ":"...
CVE-2024-6465
The WP Links Page plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'wplfajaxupdatescreenshots' function in all versions up to, and including, 4.9.5. This makes it possible for authenticated attackers, with Subscriber-level access and...
JetWidgets For Elementor < 1.0.14 - Contributor+ Stored XSS via Shortcode
The plugin does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks jw-posts showimage='yes'...
USN-5736-1: ImageMagick vulnerabilities
It was discovered that ImageMagick incorrectly handled certain values when processing PDF files. If a user or automated system using ImageMagick were tricked into opening a specially crafted PDF file, an attacker could exploit this to cause a denial of service. This issue only affected Ubuntu 14....
CVE-2021-24696 Simple Download Monitor < 3.9.9 - Multiple CSRF
The Simple Download Monitor WordPress plugin before 3.9.9 does not enforce nonce checks, which could allow attackers to perform CSRF attacks to 1 make admins export logs to exploit a separate log disclosure vulnerability fixed in 3.9.6, 2 delete logs fixed in 3.9.9, 3 remove thumbnail image from...
Simple Download Monitor < 3.9.9 - Multiple CSRF
The plugin does not enforce nonce checks, which could allow attackers to perform CSRF attacks to 1 make admins export logs to exploit a separate log disclosure vulnerability fixed in 3.9.6, 2 delete logs fixed in 3.9.9, 3 remove thumbnail image from downloads PoC To export logs which could then b...
Simple Download Monitor < 3.9.9 - Multiple CSRF
The plugin does not enforce nonce checks, which could allow attackers to perform CSRF attacks to 1 make admins export logs to exploit a separate log disclosure vulnerability fixed in 3.9.6, 2 delete logs fixed in 3.9.9, 3 remove thumbnail image from downloads To export logs which could then be...
ImageMagick Denial of Service Vulnerability (CNVD-2017-24316)
ImageMagick is a set of open-source image processing software from the U.S. company ImageMagick Studio. The software can read, convert and write pictures in a variety of formats. A denial of service vulnerability exists in the 'WriteTHUMBNAILImage' function in the coders/thumbnail.c file in...
DEBIAN-CVE-2017-13769
The WriteTHUMBNAILImage function in coders/thumbnail.c in ImageMagick through 7.0.6-10 allows an attacker to cause a denial of service buffer over-read by sending a crafted JPEG file...
UBUNTU-CVE-2017-13769
The WriteTHUMBNAILImage function in coders/thumbnail.c in ImageMagick through 7.0.6-10 allows an attacker to cause a denial of service buffer over-read by sending a crafted JPEG file...
Microsoft Graphics Rendering Engine Thumbnail Image Stack Buffer Overflow - Ver2 (CVE-2010-3970)
Thumbnails are reduced-size versions of pictures, used to help in recognizing and organizing them, serving the same role for images as a normal text index does for words. A stack buffer overflow vulnerability has been discovered in Microsoft's Graphics Rendering Engine. The vulnerability is due t...
Windows Media Player with K-Lite Codec Pack DoS PoC
No description provided by source. Greetings, There is a DOS condition on windows media player when the klite codec pack is installed. Exploit Title: Windows Media Player with klite codec pack DOS Poc Date: 14/06/2011 Author: Nicolas Krassas , www.twitter.com/dinosn Version:Windows Media Player 1...
Windows Media Player with K-Lite Codec Pack DoS PoC
Exploit for windows platform in category dos / poc Greetings, There is a DOS condition on windows media player when the klite codec pack is installed. Exploit Title: Windows Media Player with klite codec pack DOS Poc Date: 14/06/2011 Author: Nicolas Krassas , www.twitter.com/dinosn Version:Window...