2 matches found
CVE-2021-45463
loadcache in GEGL before 0.4.34 allows shell expansion when a pathname in a constructed command line is not escaped or filtered. This is caused by use of the system library function for execution of the ImageMagick convert fallback in magick-load. NOTE: GEGL releases before 0.4.34 are used in GIM...
GIMP 操作系统命令注入漏洞
GIMP is an open source bitmap image editor from the GIMP team. GIMP suffers from an operating system command injection vulnerability that stems from allowing shell extensions when pathnames in constructed command lines are not escaped or filtered. This is caused by performing an ImageMagick...