CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

18 matches found

Tenable Nessus•added 2026/05/14 12:0 a.m.•5 views

Amazon Linux 2 : xdg-desktop-portal, --advisory ALAS2-2026-3298 (ALAS-2026-3298)

The version of xdg-desktop-portal installed on the remote host is prior to 1.0.2-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2026-3298 advisory. Flatpak xdg-desktop-portal before 1.20.4 and 1.21.x before 1.21.1 allows any Flatpak app to trash any file in the host...

6.3CVSS5.8AI score0.00128EPSS

Exploits0References4

Github Security Blog•added 2026/03/12 8:30 p.m.•6 views

ImageMagick: Specially crafted SVG leads to segmentation fault and generate trash files in "/tmp", possible to leverage DoS

Summary Specially crafted SVG file make segmentation fault and generate trash files in "/tmp", possible to leverage DoS. Operating system, version and so on Linux, Debian Buster LTS core 5.10 / Parrot OS 5.1 Electro Ara Tested ImageMagick version 6.9.11-60, 7.1.0-62 Details A specially created SV...

5.5CVSS5.8AI score0.00865EPSS

Exploits1References6Affected Software19

Cvelist•added 2025/12/05 5:44 p.m.•22 views

CVE-2025-66545 Nextcloud Groupfolders users with read-only permissions for team folder can restore deleted files from trash bin

Nextcloud Groupfolders provides admin-configured folders shared by everyone in a group or team. Prior to 14.0.11, 15.3.12, 16.0.15, 17.0.14, 18.1.8, 19.1.8, and 20.1.2, a user with read-only permission can restore a file from the trash bin. This vulnerability is fixed in 14.0.11, 15.3.12, 16.0.15...

3.5CVSS0.0023EPSS

Exploits0References4

Exploit DB•added 2025/12/03 12:0 a.m.•175 views

PluckCMS 4.7.10 - Unrestricted File Upload

Exploit Title: PluckCMS 4.7.10 - Unrestricted File Upload Date: 2025-11-25 Exploit Author: CodeSecLab Vendor Homepage: https://github.com/pluck-cms/pluck/ Software Link: https://github.com/pluck-cms/pluck/ Version: 4.7.10 Tested on: Windows CVE : CVE-2020-20969 Proof Of Concept GET...

7.2CVSS7AI score0.06258EPSS

Exploits4

Tenable Nessus•added 2023/05/24 12:0 a.m.•39 views

Amazon Linux AMI : ImageMagick (ALAS-2023-1745)

The version of ImageMagick installed on the remote host is prior to 6.9.10.97-1.25. It is, therefore, affected by a vulnerability as referenced in the ALAS-2023-1745 advisory. A vulnerability was discovered in ImageMagick where a specially created SVG file loads itself and causes a segmentation...

5.5CVSS6.4AI score0.00865EPSS

Exploits1References4

Amazon•added 2023/05/16 12:0 a.m.•31 views

Medium: ImageMagick

Issue Overview: A vulnerability was discovered in ImageMagick where a specially created SVG file loads itself and causes a segmentation fault. This flaw allows a remote attacker to pass a specially crafted SVG file that leads to a segmentation fault, generating many trash files in "/tmp," resulti...

5.5CVSS5.8AI score0.00865EPSS

Exploits1

Tenable Nessus•added 2023/04/20 12:0 a.m.•32 views

Amazon Linux 2 : ImageMagick (ALAS-2023-2014)

The version of ImageMagick installed on the remote host is prior to 6.9.10.97-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2023-2014 advisory. A vulnerability was discovered in ImageMagick where a specially created SVG file loads itself and causes a segmentation...

5.5CVSS6.4AI score0.00865EPSS

Exploits1References4

Amazon•added 2023/04/20 12:0 a.m.•44 views

Medium: ImageMagick

5.5CVSS5.8AI score0.00865EPSS

Exploits1

Mageia•added 2023/04/11 7:2 p.m.•49 views

Updated imgagmagick packages fix security vulnerability

A vulnerability was discovered in ImageMagick where a specially created SVG file loads itself and causes a segmentation fault. This flaw allows a remote attacker to pass a specially crafted SVG file that leads to a segmentation fault, generating many trash files in "/tmp," resulting in a denial o...

5.5CVSS5.4AI score0.00865EPSS

Exploits1References3

Tenable Nessus•added 2023/04/07 12:0 a.m.•38 views

ImageMagick 7.1.1-0 DoS

The remote Windows host has a version of ImageMagick installed that is 7.1.1-0. It is, therefore, affected by a denial of service vulnerabilty where a specially created SVG file loads itself and causes a segmentation fault. This flaw allows a remote attacker to pass such a specially crafted SVG...

5.5CVSS6.7AI score0.00865EPSS

Exploits1References3

Tenable Nessus•added 2023/04/05 12:0 a.m.•34 views

SUSE SLES15 / openSUSE 15 Security Update : ImageMagick (SUSE-SU-2023:1756-1)

The remote SUSE Linux SLES15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:1756-1 advisory. - A vulnerability was discovered in ImageMagick where a specially created SVG file loads itself and causes a segmentation fault. This flaw...

5.5CVSS6.4AI score0.00865EPSS

Exploits1References4

Tenable Nessus•added 2023/04/04 12:0 a.m.•32 views

Amazon Linux 2023 : ImageMagick, ImageMagick-c++, ImageMagick-c++-devel (ALAS2023-2023-150)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2023-150 advisory. A vulnerability was discovered in ImageMagick where a specially created SVG file loads itself and causes a segmentation fault. This flaw allows a remote attacker to pass a specially crafted SVG file tha...

5.5CVSS6.4AI score0.00865EPSS

Exploits1References4

OSV•added 2023/03/23 9:30 p.m.•2 views

GHSA-GV85-XG33-553C Duplicate Advisory: ImageMagick: Specially crafted SVG leads to segmentation fault and generate trash files in "/tmp", possible to leverage DoS

Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-j96m-mjp6-99xr. This link is maintained to preserve external references. Original Description A vulnerability was discovered in ImageMagick where a specially created SVG file loads itself and causes a segmentati...

5.5CVSS5.7AI score0.00865EPSS

Exploits1References5