Vulnerabilities

CVE-2025-52994

by Fred · 11/07/2025

gif_outputAsJpeg in phpThumb through 1.7.23 allows phpthumb.gif.php OS Command Injection via a crafted parameter value. This is fixed in 1.7.23-202506081709.

Assigner : cve@mitre.org

More information : https://github.com/JamesHeinrich/phpThumb/commit/cdcbc206ae601b15fd17e7aadf59df51149a0e82

Similar

Tags: Cybersecurity Alert