Errors from functions imagecreatefrom* and image* have not been checked properly. Although PHP issued warning and function returned false, original file (that could contain malicious payload) was kept on the disk.
Impact
All versions until v1.3.
Patches
Users should upgrade to v1.4.
Errors from functions
imagecreatefrom*andimage*have not been checked properly. Although PHP issued warning and function returnedfalse, original file (that could contain malicious payload) was kept on the disk.Impact
All versions until v1.3.
Patches
Users should upgrade to v1.4.