Описание
Cross-site scripting in demos/demo.mysqli.php in getID3
Cross-site scripting (XSS) vulnerability in demos/demo.mysqli.php in getID3 1.X and v2.0.0-beta allows remote attackers to inject arbitrary web script or HTML via the showtagfiles parameter.
Пакеты
Наименование
james-heinrich/getid3
composer
Затронутые версииВерсия исправления
>= 1.0.0, < 1.9.21
1.9.21
Связанные уязвимости
CVSS3: 6.1
ubuntu
больше 4 лет назад
Cross-site scripting (XSS) vulnerability in demos/demo.mysqli.php in getID3 1.X and v2.0.0-beta allows remote attackers to inject arbitrary web script or HTML via the showtagfiles parameter.
CVSS3: 6.1
nvd
больше 4 лет назад
Cross-site scripting (XSS) vulnerability in demos/demo.mysqli.php in getID3 1.X and v2.0.0-beta allows remote attackers to inject arbitrary web script or HTML via the showtagfiles parameter.
CVSS3: 6.1
debian
больше 4 лет назад
Cross-site scripting (XSS) vulnerability in demos/demo.mysqli.php in g ...