Vulnerability in Imagemagick


Saw this in another forum. Due to the widespread nature of imagemagick I definitely feel it's worth reposting. Lots of people are using imagemagick even if they don't realize it.

Imagemagick is a program commonly used for resizing images on the fly for dynamic and responsive designs. You'll find it working inside wordpress, mybb, and a wide assortment of other design applications.

including a copy of the original published exploit for anyone interested:

The good news is that there is a workaround and an alternative. Recommended solution is to install the gd until the imagemagick team can patch this up.

edit: including a link to tutorial for installing apache-gd library


Woah, good to know! I just checked the PHP settings in cPanel, and thankfully it looks like Imagemagick is disabled by default.