RSS   Vulnerabilities for 'Getid3'   RSS

2021-10-01
 
CVE-2021-40926

CWE-79
 

 
Cross-site scripting (XSS) vulnerability in demos/demo.mysqli.php in getID3 1.X and v2.0.0-beta allows remote attackers to inject arbitrary web script or HTML via the showtagfiles parameter.

 
2014-06-04
 
CVE-2014-2053

 

 
getID3() before 1.9.8, as used in ownCloud Server before 5.0.15 and 6.0.x before 6.0.2, allows remote attackers to read arbitrary files, cause a denial of service, or possibly have other impact via an XML External Entity (XXE) attack.

 


Copyright 2024, cxsecurity.com

 

Back to Top