Vulnerabilities > Getid3

DATE CVE VULNERABILITY TITLE RISK
2021-10-01 CVE-2021-40926 Cross-site Scripting vulnerability in Getid3
Cross-site scripting (XSS) vulnerability in demos/demo.mysqli.php in getID3 1.X and v2.0.0-beta allows remote attackers to inject arbitrary web script or HTML via the showtagfiles parameter.
network
low complexity
getid3 CWE-79
6.1