CVE-2024-54275

CVE-2024-54275 refers to an Reflected Cross‑Site Scripting (XSS) vulnerability in the WordPress plugin CSV to HTML . The vulnerability arises from improper neutralization of input during web page generation, allowing reflected XSS. Affected software is the CSV to HTML plugin (version range listed...

jhead 代码问题漏洞

jhead is a tool for modifying JPEG file information. A code issue vulnerability exists in exif.c in jhead versions 3.04 and 3.05, which stems from an uncontrolled address read in the Get16u function in exif.c resulting in a segmentation error...

PT-2022-9886 · Jhead +4 · Jhead +4

Name of the Vulnerable Software and Affected Versions: jhead versions 3.04 through 3.05 Description: A Heap-based Buffer Overflow issue exists via the RemoveSectionType function in jpgfile.c. Recommendations: For versions 3.04 and 3.05, consider disabling the RemoveSectionType function as a...

PT-2020-19191 · Mats Peterson +5 · Jhead +5

Name of the Vulnerable Software and Affected Versions: jhead versions 3.04 and earlier Description: The issue is a heap-based buffer over-read in the process DQT function located in jpgqguess.c. This occurs in the processing of certain data. Recommendations: For versions 3.04 and earlier, at the...