VYPR

Packagist (Composer) package

islandora/crayfish

pkg:composer/islandora/crayfish

Vulnerabilities (1)

  • CVE-2025-25286CriFeb 13, 2025
    affected < 4.1.0fixed 4.1.0

    Crayfish is a collection of Islandora 8 microservices, one of which, Homarus, provides FFmpeg as a microservice. Prior to Crayfish version 4.1.0, remote code execution may be possible in web-accessible installations of Homarus in certain configurations. The issue has been patched