Search for packages
| purl | pkg:deb/debian/php-getid3@1.9.22%2Bdfsg-1?distro=trixie |
| Vulnerability | Summary | Fixed by |
|---|---|---|
| This package is not known to be affected by vulnerabilities. | ||
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-1twr-du4b-h7h6 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Cross-site scripting (XSS) vulnerability in getID3 and allows remote attackers to inject arbitrary web script or HTML via the showtagfiles parameter. |
CVE-2021-40926
GHSA-x2gw-85w6-fjjw |
| VCID-95zd-g97m-ekh3 | getID3 is vulnerable to XML External Entity (XXE) getID3() before 1.9.9, as used in ownCloud Server before 5.0.15 and 6.0.x before 6.0.2, allows remote attackers to read arbitrary files, cause a denial of service, or possibly have other impact via an XML External Entity (XXE) attack. |
CVE-2014-2053
GHSA-5v43-55m5-qr8f |
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-05-02T02:20:50.427082+00:00 | Debian Importer | Fixing | VCID-95zd-g97m-ekh3 | https://security-tracker.debian.org/tracker/data/json | 38.6.0 |
| 2026-04-28T13:51:12.792100+00:00 | Debian Importer | Fixing | VCID-1twr-du4b-h7h6 | https://security-tracker.debian.org/tracker/data/json | 38.4.0 |
| 2026-04-16T10:39:45.328084+00:00 | Debian Importer | Fixing | VCID-95zd-g97m-ekh3 | https://security-tracker.debian.org/tracker/data/json | 38.4.0 |
| 2026-04-13T07:12:38.337202+00:00 | Debian Importer | Fixing | VCID-95zd-g97m-ekh3 | https://security-tracker.debian.org/tracker/data/json | 38.3.0 |
| 2026-04-03T07:49:37.241238+00:00 | Debian Importer | Fixing | VCID-1twr-du4b-h7h6 | https://security-tracker.debian.org/tracker/data/json | 38.1.0 |
| 2026-04-03T07:49:37.190679+00:00 | Debian Importer | Fixing | VCID-95zd-g97m-ekh3 | https://security-tracker.debian.org/tracker/data/json | 38.1.0 |