Voidzone

CVE-2022-44268 - Proof Of Concept of the ImageMagick Arbitrary File Read vulnerability

Preface

This is a proof of concept of the ImageMagick bug discovered by MetabaseQ Team.

ImageMagick - Arbitrary File Read PoC

Further instructions about the bug can be found on the MetabaseQ Team research paper linked above.

Tested on ImageMagick v. 7.1.0-48 and 6.9.11-60

Please note: at the time of writing there is no fix available.