14 matches found
UBUNTU-CVE-2026-33535
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to 7.1.2-18 and 6.9.13-43, an out-of-bounds write of a zero byte exists in the X11 display interaction path that could lead to a crash. Versions 7.1.2-18 and 6.9.13-43 patch the issue...
EUVD-2026-10388
ImageMagick has a heap buffer over-read via 32-bit integer overflow in MAT decoder...
CVE-2025-70849
Arbitrary File Upload in podinfo thru 6.9.0 allows unauthenticated attackers to upload arbitrary files via crafted POST request to the /store endpoint. The application renders uploaded content without a restrictive Content-Security-Policy CSP or adequate Content-Type validation, leading to Stored...
CVE-2025-67931 WordPress BulletProof Security plugin <= 6.9 - Sensitive Data Exposure vulnerability
Insertion of Sensitive Information Into Sent Data vulnerability in AITpro BulletProof Security bulletproof-security allows Retrieve Embedded Sensitive Data.This issue affects BulletProof Security: from n/a through = 6.9...
EUVD-2025-28096
Malicious code in bioql PyPI...
[SECURITY] Fedora 42 Update: qt6-qtquick3dphysics-6.9.1-1.fc42
The Qt 6 Quick3D Physics library...
CVE-2023-0600
The WP Visitor Statistics Real Time Traffic WordPress plugin before 6.9 does not escape user input which is concatenated to an SQL query, allowing unauthenticated visitors to conduct SQL Injection attacks...
WordPress Easy Forms for Mailchimp plugin <= 6.9.0 - Broken Access Control vulnerability
Broken Access Control vulnerability discovered by NGÔ THIÊN AN Patchstack Alliance in WordPress Plugin Easy Forms for Mailchimp versions = 6.9.0...
PT-2024-24155 · Thinkcmf · Thinkcmf
Name of the Vulnerable Software and Affected Versions: ThinkCMF version 6.0.9 Description: The issue concerns a file upload vulnerability via the UeditorController.php. Recommendations: For ThinkCMF version 6.0.9, consider disabling the file upload functionality via UeditorController.php until a...
ZOHO ManageEngine AssetExplorer 跨站脚本漏洞
ZOHO ManageEngine AssetExplorer is a suite of asset management software from ZOHO USA. The software provides asset tracking, scanning of IT assets and asset ownership tracking. A security vulnerability exists in ZOHO ManageEngine AssetExplorer version 6.9 that stems from the discovery of a...
Abode Iota 操作系统命令注入漏洞
Abode Iota is a reliable Diy home security system from Abode. A security vulnerability exists in Abode Iota versions 6.9X and 6.9Z. An attacker exploits the vulnerability to execute arbitrary commands via specially crafted HTTP requests...
Abode Iota 操作系统命令注入漏洞
Abode Iota is a reliable Diy home security system from Abode. An operating system command injection vulnerability exists in Abode Iota All-In-One Security Kit versions 6.9X and 6.9Z. An attacker could exploit this vulnerability to execute arbitrary commands via specially crafted HTTP requests...
CVE-2018-6641
An Arbitrary Free Remote Code Execution issue was discovered in Design Science MathType 6.9c. Crafted input can overwrite a structure, leading to a function call with an invalid parameter, and a subsequent free of important data such as a function pointer or list pointer. This is fixed in 6.9d...
ImageMagick 'ReadMATImage' function memory leak vulnerability
ImageMagick is a set of open-source image processing software from the U.S. company ImageMagick Studio. The software can read, convert and write pictures in a variety of formats. The coders/mat.c file in ImageMagick versions 6.9.9-3 and earlier and versions 7.x through 7.0.6-3 has a A memory leak...