CVE-2026-24806

NONE

Risk Signal Score0/100 — NIEDRIG

EPSS-Score

Exploit-Wahrscheinlichkeit (30 Tage)

Beschreibung

Improper Control of Generation of Code ('Code Injection') vulnerability in liuyueyi quick-media (plugins/svg-plugin/batik-codec-fix/src/main/java/org/apache/batik/ext/awt/image/codec/png modules). This vulnerability is associated with program files PNGImageEncoder.Java. This issue affects quick-media: before v1.0.

Referenzen

https://github.com/liuyueyi/quick-media/pull/122
https://github.com/css4j/echosvg/discussions/137
https://github.com/github/advisory-database/pull/7437
https://github.com/liuyueyi/quick-media/pull/122#issuecomment-4305453193