manga-image-translator contains a critical remote code execution vulnerability in shared API server mode. The vulnerability occurs due to unsafe deserialization of untrusted pickle data in the share.py module. Attackers can exploit the /execute/{method_name} and /simple_execute/{method_name} endpoints by sending crafted pickle payloads. The vulnerability allows arbitrary code execution in the server process. When running in default Docker deployment as root, this leads to full container compromise. Remote attackers can supply malicious pickle data through HTTP request bodies to trigger the exploit.