Scaner-VSvulnerability catalog · v4.2

Home Catalog Sources CWE CAPEC ATT&CK Mitigations Products Vendors Docs

← Back to List

Debian›Distributiondebian

Php-getid3

Vulnerabilities

2

Known exploited

0

Max CVSS

7.5

Top EPSS

0.04681

Severity breakdown

Critical

0

High

1

Medium

1

Low

0

Also matched as (raw): php-getid3

Top vulnerabilities

CVE-2014-2053getID3() before 1.9.8, as used in ownCloud Server before 5.0.15 and 6.0.x before 6.0.2, allows remote attackers to read arbitrary files, cause a denial of service, or possibly have other impact via an XML External Entity (XXE) attack.

CVE-2021-40926Cross-site scripting (XSS) vulnerability in demos/demo.mysqli.php in getID3 1.X and v2.0.0-beta allows remote attackers to inject arbitrary web script or HTML via the showtagfiles parameter.

View vendor →Open in catalog with product filter →