ExifTool CVE-2021-22204 - Arbitrary Code Execution discovered by @vakzz. The story of finding an ImageTragick-esque vulnerability, originally in gitlab. Go down the rabbit hole of image parsing with perl! Contents: • Background • The Bug • Additional Formats • Bonus Formats • References https://devcraft.io/2021/05/04/exiftool-arbitrary-code-execution-cve-2021-22204.html 361 views19:44