[MEDIUM] phpThumb is vulnerable to Command Injection through its gif_outputAsJpeg function

PKSA-hmp4-h7hb-bhj5 CVE-2025-52994 GHSA-q745-cfqh-hcrw

Affected package: james-heinrich/phpthumb

Affected version: <=1.7.23

Reported by:
GitHub