Medium severity6.5GHSA Advisory· Published Jan 30, 2025· Updated Apr 15, 2026
CVE-2024-53615
CVE-2024-53615
Description
A command injection vulnerability in the video thumbnail rendering component of Karl Ward's files.gallery v0.3.0 through 0.11.0 allows remote attackers to execute arbitrary code via a crafted video file.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
files.photo.gallerynpm | >= 0.3.0, <= 0.11.0 | — |
Affected products
2- Range: >= 0.3.0, <= 0.11.0
Patches
Vulnerability mechanics
References
2- github.com/advisories/GHSA-5wjw-qjhm-v43hghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2024-53615ghsaADVISORY
News mentions
0No linked articles in our index yet.