Known Vulnerabilities for Image by Golang
Listed below are 5 of the newest known vulnerabilities associated with "Image" by "Golang".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-61857 json | ImageMagick before 7.1.2-26 contains a heap use-after-free vulnerability caused by missing null check when parsing XMP profil... | Not Provided | 2026-07-11 | 2026-07-11 |
| CVE-2026-61465 json | ImageMagick before 7.1.2-26 and 6.9.13-51 is missing a check for the allowed memory allocation limit in matrix-backed operati... | Not Provided | 2026-07-11 | 2026-07-11 |
| CVE-2026-61456 json | The Grav API plugin (getgrav/grav-plugin-api) before 1.0.3 fails to sanitize SVG files uploaded through the POST /api/v1/medi... | Not Provided | 2026-07-10 | 2026-07-10 |
| CVE-2026-61448 json | Parse Server is affected by a stored cross-site scripting (XSS) vulnerability in versions >= 9.0.0, < 9.10.0-alpha.2 and <= 8... | Not Provided | 2026-07-11 | 2026-07-11 |
| CVE-2026-59938 json | pypdf is a free and open-source pure-python PDF library. Prior to 6.14.0, an attacker can craft a PDF with declared image siz... | Not Provided | 2026-07-08 | 2026-07-09 |
| CVE-2026-59936 json | pypdf is a free and open-source pure-python PDF library. Prior to 6.14.1, an attacker can craft a PDF with a page content str... | Not Provided | 2026-07-08 | 2026-07-09 |
| CVE-2026-59935 json | pypdf is a free and open-source pure-python PDF library. Prior to 6.14.2, an attacker can craft a PDF with a page content str... | Not Provided | 2026-07-08 | 2026-07-09 |
| CVE-2026-59227 json | Open WebUI is an extensible, feature-rich, and user-friendly self-hosted AI platform. From 0.8.11 before 0.10.0, POST /api/v1... | Not Provided | 2026-07-09 | 2026-07-09 |
| CVE-2026-59089 json | A flaw was found in GIMP. The PlayStation TIM loader, responsible for handling PlayStation image files, incorrectly calculate... | Not Provided | 2026-07-06 | 2026-07-06 |
| CVE-2026-58657 json | Grav before 2.0.0 (affected through 2.0.0-rc.9 and the 2.0 branch) contains a stored CSS injection vulnerability in the Markd... | Not Provided | 2026-07-08 | 2026-07-08 |