36 matches found
CVE-2026-21433 Emlog vulnerable to Server-Side Request Forgery (SSRF)
Emlog is an open source website building system. Versions up to and including 2.5.19 are vulnerable to server-side Out-of-Band OOB requests / SSRF via uploaded SVG files. An attacker can upload a crafted SVG to http://emblog/admin/media.php which contains external resource references. When the...
EUVD-2021-16068
Malware in sbrugna...
EUVD-2022-35069
Malicious code in bioql PyPI...
CVE-2024-56515
Matrix Media Repo MMR is a highly configurable multi-homeserver media repository for Matrix. If SVG or JPEGXL thumbnailers are enabled they are disabled by default, a user may upload a file which claims to be either of these types and request a thumbnail to invoke a different decoder in...
CVE-2021-29453
matrix-media-repo is an open-source multi-domain media repository for Matrix. Versions 1.2.6 and earlier of matrix-media-repo do not properly handle malicious images which are crafted to be small in file size, but large in complexity. A malicious user could upload a relatively small image in term...
CVE-2019-19775
The image thumbnailing handler in Zulip Server versions 1.9.0 to before 2.0.8 allowed an open redirect that was visible to logged-in users...
SUSE CVE-2024-56515
Matrix Media Repo MMR is a highly configurable multi-homeserver media repository for Matrix. If SVG or JPEGXL thumbnailers are enabled they are disabled by default, a user may upload a file which claims to be either of these types and request a thumbnail to invoke a different decoder in...
GO-2025-3400 Matrix Media Repo (MMR) allows untrusted file formats can be thumbnailed, invoking potentially further untrusted decoders in github.com/t2bot/matrix-media-repo
Matrix Media Repo MMR allows untrusted file formats can be thumbnailed, invoking potentially further untrusted decoders in github.com/t2bot/matrix-media-repo...
Matrix Media Repo (MMR) allows untrusted file formats can be thumbnailed, invoking potentially further untrusted decoders
Impact If SVG or JPEGXL thumbnailers are enabled they are disabled by default, a user may upload a file which claims to be either of these types and request a thumbnail to invoke a different decoder in ImageMagick. In some ImageMagick installations, this includes the capability to run Ghostscript...
CVE-2024-56515 Untrusted file formats can be thumbnailed, invoking potentially further untrusted decoders in Matrix Media Repo
Matrix Media Repo MMR is a highly configurable multi-homeserver media repository for Matrix. If SVG or JPEGXL thumbnailers are enabled they are disabled by default, a user may upload a file which claims to be either of these types and request a thumbnail to invoke a different decoder in...
SUSE CVE-2010-2640
Array index error in the PK font parser in the dvi-backend component in Evince 2.32 and earlier allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted font in conjunction with a DVI file that is processed by the thumbnailer...
SUSE CVE-2016-9446
The vmnc decoder in the gstreamer does not initialize the render canvas, which allows remote attackers to obtain sensitive information as demonstrated by thumbnailing a simple 1 frame vmnc movie that does not draw to the allocated render canvas...
SUSE CVE-2022-2833
Endless Infinite loop in Blender-thumnailing due to logical bugs...
CVE-2022-2833
Endless Infinite loop in Blender-thumnailing due to logical bugs...
CVE-2022-2833
Endless Infinite loop in Blender-thumnailing due to logical bugs...
DEBIAN-CVE-2022-2833
Endless Infinite loop in Blender-thumnailing due to logical bugs...
Design/Logic Flaw
Endless Infinite loop in Blender-thumnailing due to logical bugs...
UBUNTU-CVE-2022-2833
Endless Infinite loop in Blender-thumnailing due to logical bugs...
CVE-2022-2833
Endless Infinite loop in Blender-thumnailing due to logical bugs...
PT-2022-18963 · Blender Foundation +1 · Blender +1
Name of the Vulnerable Software and Affected Versions: Blender affected versions not specified Description: The issue is related to an endless infinite loop in Blender's thumbnailing functionality, caused by logical bugs. Recommendations: At the moment, there is no information about a newer versi...