Search for packages
Package details: pkg:composer/james-heinrich/getid3@2.0.0-beta3
purl pkg:composer/james-heinrich/getid3@2.0.0-beta3
Next non-vulnerable version None.
Latest non-vulnerable version None.
Risk 3.1
Vulnerabilities affecting this package (1)
Vulnerability Summary Fixed by
VCID-qgmm-hss9-tba2
Aliases:
CVE-2021-40926
GHSA-x2gw-85w6-fjjw
Cross-site scripting in demos/demo.mysqli.php in getID3 Cross-site scripting (XSS) vulnerability in demos/demo.mysqli.php in getID3 1.X and v2.0.0-beta allows remote attackers to inject arbitrary web script or HTML via the showtagfiles parameter. There are no reported fixed by versions.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2025-08-01T10:03:53.830411+00:00 GitLab Importer Affected by VCID-qgmm-hss9-tba2 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/james-heinrich/getid3/CVE-2021-40926.yml 37.0.0