VYPR

npm package

exiftool-vendored

pkg:npm/exiftool-vendored

Vulnerabilities (1)

  • CVE-2026-43893HigMay 11, 2026
    affected < 35.19.0fixed 35.19.0

    exiftool-vendored provides cross-platform Node.js access to ExifTool. Prior to 35.19.0, exiftool-vendored starts ExifTool in -stay_open True -@ - mode, where arguments are read from stdin one per line. In affected versions, several caller-supplied strings were interpolated into E