GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
45 advisories
ImageMagick: Heap-based Buffer Overflow in GetPixelIndex due to metadata-cache desynchronization
Low
GHSA-gq5v-qf8q-fp77
was published
for
Magick.NET-Q16-AnyCPU
(NuGet)
Feb 25, 2026
ImageMagick: Memory Leak in multiple coders that write raw pixel data
Low
GHSA-wfx3-6g53-9fgc
was published
for
Magick.NET-Q16-AnyCPU
(NuGet)
Feb 25, 2026
ImageMagick: Memory leak in coders/txt.c without freetype
Low
GHSA-3q5f-gmjc-38r8
was published
for
Magick.NET-Q16-AnyCPU
(NuGet)
Feb 25, 2026
ImageMagick: SVG-to-MVG Command Injection via coders/svg.c
Low
GHSA-xpg8-7m6m-jf56
was published
for
Magick.NET-Q16-AnyCPU
(NuGet)
Feb 25, 2026
ImageMagick: Malicious PCD files trigger 1‑byte heap Out-of-bounds Read and DoS
Low
GHSA-wgxp-q8xq-wpp9
was published
for
Magick.NET-Q16-AnyCPU
(NuGet)
Feb 25, 2026
mageMagick has a possible use-after-free write in its PDB decoder
Low
GHSA-3j4x-rwrx-xxj9
was published
for
Magick.NET-Q16-AnyCPU
(NuGet)
Feb 25, 2026
ImageMagick has a possible heap Use After Free vulnerability in its meta coder
Low
GHSA-2gq3-ww97-wfjm
was published
for
Magick.NET-Q16-AnyCPU
(NuGet)
Feb 25, 2026
ImageMagick: Integer Overflow in PSB (PSD v2) RLE decoding path causes heap Out of Bounds reads for 32-bit builds
Low
CVE-2026-25984
was published
for
Magick.NET-Q16-AnyCPU
(NuGet)
Feb 25, 2026
DNN Vulnerable to Stored XSS Using Backend Admin Credentials
Low
CVE-2025-59546
was published
for
DotNetNuke.Core
(NuGet)
Sep 23, 2025
ImageMagick BlobStream Forward-Seek Under-Allocation
Low
CVE-2025-57807
was published
for
Magick.NET-Q16-HDRI-OpenMP-arm64
(NuGet)
Sep 5, 2025
ImageMagick affected by divide-by-zero in ThumbnailImage via montage -geometry ":" leads to crash
Low
CVE-2025-55212
was published
for
Magick.NET-Q16-AnyCPU
(NuGet)
Aug 26, 2025
ImageMagick has a heap-buffer-overflow
Low
CVE-2025-68469
was published
for
Magick.NET-Q16-AnyCPU
(NuGet)
Aug 25, 2025
ImageMagick has a Memory Leak in magick stream
Low
CVE-2025-53019
was published
for
Magick.NET-Q16-AnyCPU
(NuGet)
Aug 25, 2025
ImageMagick has a Heap Buffer Overflow in InterpretImageFilename
Low
CVE-2025-53014
was published
for
Magick.NET-Q16-AnyCPU
(NuGet)
Aug 25, 2025
DNN site Import could use an external source with a crafted request
Low
CVE-2025-48376
was published
for
DotNetNuke.SiteExportImport
(NuGet)
May 23, 2025
Duplicate Advisory: Umbraco CMS Cross-site Scripting vulnerability
Low
GHSA-4gmq-m9vp-jrwg
was published
for
Umbraco.Cms.Core
(NuGet)
Nov 4, 2024
•
withdrawn
ProTip!
Advisories are also available from the
GraphQL API