GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
735 advisories
ImageMagick BlobStream Forward-Seek Under-Allocation
Low
CVE-2025-57807
was published
for
Magick.NET-Q16-HDRI-OpenMP-arm64
(NuGet)
Sep 5, 2025
ImageMagick (WriteBMPImage): 32-bit integer overflow when writing BMP scanline stride → heap buffer overflow
High
CVE-2025-57803
was published
for
Magick.NET-Q16-AnyCPU
(NuGet)
Aug 26, 2025
ImageMagick has a Format String Bug in InterpretImageFilename leads to arbitrary code execution
High
CVE-2025-55298
was published
for
Magick.NET-Q16-AnyCPU
(NuGet)
Aug 26, 2025
ImageMagick affected by divide-by-zero in ThumbnailImage via montage -geometry ":" leads to crash
Low
CVE-2025-55212
was published
for
Magick.NET-Q16-AnyCPU
(NuGet)
Aug 26, 2025
ImageMagick has Undefined Behavior (function-type-mismatch) in CloneSplayTree
Moderate
CVE-2025-55160
was published
for
Magick.NET-Q16-AnyCPU
(NuGet)
Aug 25, 2025
ImageMagick has a heap-buffer-overflow
Low
GHSA-fff3-4rp7-px97
was published
for
Magick.NET-Q16-AnyCPU
(NuGet)
Aug 25, 2025
ImageMagick has a Memory Leak in magick stream
Low
CVE-2025-53019
was published
for
Magick.NET-Q16-AnyCPU
(NuGet)
Aug 25, 2025
ImageMagick has a Heap Buffer Overflow in InterpretImageFilename
Low
CVE-2025-53014
was published
for
Magick.NET-Q16-AnyCPU
(NuGet)
Aug 25, 2025
ImageMagick has a Stack Buffer Overflow in image.c
High
CVE-2025-53101
was published
for
Magick.NET-Q16-AnyCPU
(NuGet)
Aug 25, 2025
SixLabors ImageSharp Has Infinite Loop in GIF Decoder When Skipping Malformed Comment Extension Blocks
Moderate
CVE-2025-54575
was published
for
SixLabors.ImageSharp
(NuGet)
Jul 30, 2025
ImageMagick has XMP profile write that triggers hang due to unbounded loop
High
CVE-2025-53015
was published
for
Magick.NET-Q16-AnyCPU
(NuGet)
Jul 23, 2025
DNN.PLATFORM leaks NTLM hash via SMB Share Interaction with malicious user input
High
CVE-2025-52488
was published
for
DNN.PLATFORM
(NuGet)
Jun 20, 2025
DNN.PLATFORM possibly allows bypass of IP Filters
High
CVE-2025-52487
was published
for
DNN.PLATFORM
(NuGet)
Jun 20, 2025
DNN.PLATFORM Allows Stored Cross-Site Scripting (XSS) in Activity Feed
Moderate
CVE-2025-52485
was published
for
DNN.PLATFORM
(NuGet)
Jun 20, 2025
DNN.PLATFORM Allows Reflected Cross-Site Scripting (XSS) in some TokenReplace situations with SkinObjects
Moderate
CVE-2025-52486
was published
for
DNN.PLATFORM
(NuGet)
Jun 20, 2025
Umbraco Vulnerable to By-Pass of Configured Allowed Extensions for File Uploads
Moderate
CVE-2025-48953
was published
for
Umbraco.Cms
(NuGet)
Jun 4, 2025
DNN allows Stored Cross-Site Scripting (XSS) with svg files rendered inline
Moderate
CVE-2025-48378
was published
for
DotNetNuke.Core
(NuGet)
May 23, 2025
ProTip!
Advisories are also available from the
GraphQL API