If you are using https://github.com/wereii/lemmy-thumbnail-cleaner please stop and disable it as soon as possible.
We have found a security issue that allows any user to make LTC delete any locally hosted image.
I will be posting more details soon and editing this to include the information.
E: More information here https://github.com/wereii/lemmy-thumbnail-cleaner/issues/10
I’m really curious how someone can exploit a script that is meant to be running locally with no external facing interface
Post edited with link to more information.