Open Source ImageMagick Security Big Puts Sites at Risk
May 04, 2016, 10:00 (0 Talkback[s])
(Other stories by FOSS Force)
ImageMagick, an open source suite of tools for working with graphic images used by a large number of websites, has been found to contain a serious security vulnerability that puts sites using the software at risk for malicious code to be executed onsite. Security experts consider exploitation to be so easy they're calling it "trivial," and exploits are already circulating in the wild. The biggest risk is to sites that allows users to upload their own image files.