📦 Imagemagick Engine

This vulnerability allows authenticated WordPress administrators to execute arbitrary operating system commands on the server via the 'cli_path' parameter in the ImageMagick Engine plugin. Attackers c...

The ImageMagick Engine WordPress plugin up to version 1.7.5 contains a Cross-Site Request Forgery (CSRF) vulnerability in the 'cli_path' parameter that allows unauthenticated attackers to execute arbi...

The ImageMagick Engine WordPress plugin up to version 1.7.5 contains a deserialization vulnerability in the 'cli_path' parameter. Unauthenticated attackers can exploit this via PHAR wrappers to execut...