CVE-2026-24806

Vulnerability Description

Improper Control of Generation of Code ('Code Injection') vulnerability in liuyueyi quick-media (plugins/svg-plugin/batik-codec-fix/src/main/java/org/apache/batik/ext/awt/image/codec/png modules). This vulnerability is associated with program files PNGImageEncoder.Java.

This issue affects quick-media: before v1.0.

Vulnerability Details

Published Date

January 27, 2026

Last Modified

January 28, 2026

CWE ID

CWE-94

Source

NVD

Vendor

liuyueyi

Product

quick-media

External References

https://github.com/liuyueyi/quick-media/pull/122

Vulnerability Description

Vulnerability Details

External References

Discussion (0)

Add Comment