Vulnerabilities

ID
Packages
Summary
Published
arrow_upward
Attributes
GHSA-4fxf-xgrm-8fcj
  • NuGet/FormCMS
FormCms avatar upload feature has a stored cross-site scripting (XSS) vulnerability 2 days ago
  • Fix available
  • Severity - 6.9 (Medium)
GHSA-mxvv-97wh-cfmm
  • NuGet/Magick.NET-Q16-AnyCPU
  • NuGet/Magick.NET-Q16-HDRI-AnyCPU
  • NuGet/Magick.NET-Q16-HDRI-x86
  • NuGet/Magick.NET-Q16-x86
  • NuGet/Magick.NET-Q8-AnyCPU
  • ... 1 more
ImageMagick (WriteBMPImage): 32-bit integer overflow when writing BMP scanline stride → heap buffer overflow 4 days ago
  • Fix available
  • Severity - 7.5 (High)
GHSA-9ccg-6pjw-x645
  • NuGet/Magick.NET-Q16-AnyCPU
  • NuGet/Magick.NET-Q16-HDRI-AnyCPU
  • NuGet/Magick.NET-Q16-HDRI-OpenMP-arm64
  • NuGet/Magick.NET-Q16-HDRI-OpenMP-x64
  • NuGet/Magick.NET-Q16-HDRI-arm64
  • ... 13 more
ImageMagick has a Format String Bug in InterpretImageFilename leads to arbitrary code execution 4 days ago
  • Fix available
  • Severity - 7.5 (High)
GHSA-fh55-q5pj-pxgw
  • NuGet/Magick.NET-Q16-AnyCPU
  • NuGet/Magick.NET-Q16-HDRI-AnyCPU
  • NuGet/Magick.NET-Q16-HDRI-OpenMP-arm64
  • NuGet/Magick.NET-Q16-HDRI-OpenMP-x64
  • NuGet/Magick.NET-Q16-HDRI-arm64
  • ... 13 more
ImageMagick affected by divide-by-zero in ThumbnailImage via montage -geometry ":" leads to crash 4 days ago
  • Fix available
  • Severity - 3.7 (Low)
GHSA-6hgw-6x87-578x
  • NuGet/Magick.NET-Q16-AnyCPU
  • NuGet/Magick.NET-Q16-HDRI-AnyCPU
  • NuGet/Magick.NET-Q16-HDRI-OpenMP-arm64
  • NuGet/Magick.NET-Q16-HDRI-OpenMP-x64
  • NuGet/Magick.NET-Q16-HDRI-arm64
  • ... 13 more
ImageMagick has Undefined Behavior (function-type-mismatch) in CloneSplayTree 5 days ago
  • Fix available
  • Severity - 6.1 (Medium)
GHSA-qp29-wxp5-wh82
  • NuGet/Magick.NET-Q8-x86
  • NuGet/Magick.NET-Q8-x64
  • NuGet/Magick.NET-Q8-arm64
  • NuGet/Magick.NET-Q8-OpenMP-x64
  • NuGet/Magick.NET-Q8-OpenMP-arm64
  • ... 13 more
imagemagick: integer overflows in MNG magnification 5 days ago
  • Fix available
  • Severity - 8.8 (High)
GHSA-cjc8-g9w8-chfw
  • NuGet/Magick.NET-Q16-AnyCPU
  • NuGet/Magick.NET-Q16-HDRI-AnyCPU
  • NuGet/Magick.NET-Q16-HDRI-OpenMP-arm64
  • NuGet/Magick.NET-Q16-HDRI-OpenMP-x64
  • NuGet/Magick.NET-Q16-HDRI-arm64
  • ... 13 more
imagemagick: heap-buffer overflow read in MNG magnification with alpha 5 days ago
  • Fix available
  • Severity - 7.6 (High)
GHSA-fff3-4rp7-px97
  • NuGet/Magick.NET-Q16-AnyCPU
  • NuGet/Magick.NET-Q16-HDRI-AnyCPU
  • NuGet/Magick.NET-Q16-HDRI-OpenMP-arm64
  • NuGet/Magick.NET-Q16-HDRI-OpenMP-x64
  • NuGet/Magick.NET-Q16-HDRI-arm64
  • ... 13 more
ImageMagick has a heap-buffer-overflow 5 days ago
  • Fix available
  • Severity - 1.1 (Low)
GHSA-cfh4-9f7v-fhrc
  • NuGet/Magick.NET-Q16-AnyCPU
  • NuGet/Magick.NET-Q16-HDRI-AnyCPU
  • NuGet/Magick.NET-Q16-HDRI-OpenMP-arm64
  • NuGet/Magick.NET-Q16-HDRI-OpenMP-x64
  • NuGet/Magick.NET-Q16-HDRI-arm64
  • ... 13 more
ImageMagick has a Memory Leak in magick stream 5 days ago
  • Fix available
  • Severity - 3.7 (Low)
GHSA-hm4x-r5hc-794f
  • NuGet/Magick.NET-Q16-AnyCPU
  • NuGet/Magick.NET-Q16-HDRI-AnyCPU
  • NuGet/Magick.NET-Q16-HDRI-OpenMP-arm64
  • NuGet/Magick.NET-Q16-HDRI-OpenMP-x64
  • NuGet/Magick.NET-Q16-HDRI-arm64
  • ... 13 more
ImageMagick has a Heap Buffer Overflow in InterpretImageFilename 5 days ago
  • Fix available
  • Severity - 3.7 (Low)
GHSA-qh3h-j545-h8c9
  • NuGet/Magick.NET-Q16-AnyCPU
  • NuGet/Magick.NET-Q16-HDRI-AnyCPU
  • NuGet/Magick.NET-Q16-HDRI-OpenMP-arm64
  • NuGet/Magick.NET-Q16-HDRI-OpenMP-x64
  • NuGet/Magick.NET-Q16-HDRI-arm64
  • ... 13 more
ImageMagick has a Stack Buffer Overflow in image.c 5 days ago
  • Fix available
  • Severity - 7.4 (High)
GHSA-rxmq-m78w-7wmc
  • NuGet/SixLabors.ImageSharp
SixLabors ImageSharp Has Infinite Loop in GIF Decoder When Skipping Malformed Comment Extension Blocks 30 Jul
  • Fix available
  • Severity - 5.3 (Medium)
GHSA-75vq-qvhr-7ffr
  • NuGet/Umbraco.Cms.Api.Delivery
Umbraco Delivery API allows for cached requests to be returned with an invalid API key 29 Jul
  • Fix available
  • Severity - 5.3 (Medium)
GHSA-vmhh-8rxq-fp9g
  • NuGet/Magick.NET-Q8-AnyCPU
  • NuGet/Magick.NET-Q16-AnyCPU
  • NuGet/Magick.NET-Q16-HDRI-AnyCPU
  • NuGet/Magick.NET-Q8-x64
  • NuGet/Magick.NET-Q8-arm64
  • ... 14 more
ImageMagick has XMP profile write that triggers hang due to unbounded loop 23 Jul
  • Fix available
  • Severity - 7.5 (High)
GHSA-pgvc-6h2p-q4f6
  • NuGet/Umbraco.Cms
Umbraco CMS disclosure of configured password requirements 24 Jun
  • Fix available
  • Severity - 5.3 (Medium)
GHSA-mgfv-2362-jq96
  • NuGet/DNN.PLATFORM
DNN.PLATFORM leaks NTLM hash via SMB Share Interaction with malicious user input 20 Jun
  • Fix available
  • Severity - 8.6 (High)