Description
getID3() before 1.9.8, as used in ownCloud Server before 5.0.15 and 6.0.x before 6.0.2, allows remote attackers to read arbitrary files, cause a denial of service, or possibly have other impact via an XML External Entity (XXE) attack.
Remediation
References
Related Vulnerabilities
WordPress Plugin Register IPs Unspecified Vulnerability (1.8.0)
XWiki CVE-2023-40573 Vulnerability (CVE-2023-40573)
MySQL CVE-2018-2818 Vulnerability (CVE-2018-2818)
Ruby Out-of-bounds Write Vulnerability (CVE-2016-2338)
MediaWiki Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-4302)