Description
getID3() before 1.9.8, as used in ownCloud Server before 5.0.15 and 6.0.x before 6.0.2, allows remote attackers to read arbitrary files, cause a denial of service, or possibly have other impact via an XML External Entity (XXE) attack.
Remediation
References
Related Vulnerabilities
WordPress Plugin Slickr Flickr Cross-Site Scripting (2.8.1)
WordPress Plugin JS Job Manager Security Bypass (1.1.8)
Contao Improper Privilege Management Vulnerability (CVE-2021-37627)
Oracle Application Server Other Vulnerability (CVE-2002-1089)
Internet Information Services Other Vulnerability (CVE-2001-0096)