Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Getid3 Subscribe
Filtered by product Getid3
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2021-40926 1 Getid3 1 Getid3 2021-10-04 4.3 MEDIUM 6.1 MEDIUM
Cross-site scripting (XSS) vulnerability in demos/demo.mysqli.php in getID3 1.X and v2.0.0-beta allows remote attackers to inject arbitrary web script or HTML via the showtagfiles parameter.
CVE-2014-2053 2 Getid3, Owncloud 2 Getid3, Owncloud 2017-01-06 7.5 HIGH N/A
getID3() before 1.9.8, as used in ownCloud Server before 5.0.15 and 6.0.x before 6.0.2, allows remote attackers to read arbitrary files, cause a denial of service, or possibly have other impact via an XML External Entity (XXE) attack.