VYPR

npm package

files.photo.gallery

pkg:npm/files.photo.gallery

Vulnerabilities (1)

  • CVE-2024-53615MedJan 30, 2025
    affected >= 0.3.0, <= 0.11.0

    A command injection vulnerability in the video thumbnail rendering component of Karl Ward's files.gallery v0.3.0 through 0.11.0 allows remote attackers to execute arbitrary code via a crafted video file.