{"id":81845,"date":"2026-07-11T17:46:24","date_gmt":"2026-07-11T14:16:24","guid":{"rendered":"https:\/\/afaghhosting.net\/blog\/cve-2026-61858-imagemagick-before-7-1-2-26-policy-bypass-via-apng-encoder\/"},"modified":"2026-07-11T17:46:24","modified_gmt":"2026-07-11T14:16:24","slug":"cve-2026-61858-imagemagick-before-7-1-2-26-policy-bypass-via-apng-encoder","status":"publish","type":"post","link":"https:\/\/afaghhosting.net\/blog\/cve-2026-61858-imagemagick-before-7-1-2-26-policy-bypass-via-apng-encoder\/","title":{"rendered":"CVE-2026-61858 &#8211; ImageMagick before 7.1.2-26 Policy Bypass via APNG encoder"},"content":{"rendered":"<p>CVE ID :CVE-2026-61858<\/p>\n<p>  Published : July 11, 2026, 2:16 p.m. | 1\u00a0hour, 8\u00a0minutes ago<\/p>\n<p>  Description :ImageMagick before 7.1.2-26 contains a policy bypass vulnerability in the APNG encoder and external delegates due to missing validation checks. Attackers can write files to disallowed paths by bypassing configured policy restrictions through the APNG encoding process.<\/p>\n<p>  Severity: 4.8 | MEDIUM<\/p>\n<p>  Visit the link for more details, such as CVSS details, affected products, timeline, and more&#8230;\u00a0<\/p>\n","protected":false},"excerpt":{"rendered":"<p>CVE ID :CVE-2026-61858 Published : July 11, 2026, 2:16 p.m. | 1\u00a0hour, 8\u00a0minutes ago Description :ImageMagick before 7.1.2-26 contains a policy bypass vulnerability in the APNG encoder and external delegates due to missing validation checks. Attackers can write files to disallowed paths by bypassing configured policy restrictions through the APNG encoding process. Severity: 4.8 | &hellip;<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[26],"tags":[],"class_list":["post-81845","post","type-post","status-publish","format-standard","hentry","category-vulnerability"],"_links":{"self":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/81845","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/comments?post=81845"}],"version-history":[{"count":0,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/81845\/revisions"}],"wp:attachment":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/media?parent=81845"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/categories?post=81845"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/tags?post=81845"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}