beets@1.0b12 vulnerabilities

music tagger and library organizer

Direct Vulnerabilities

Known vulnerabilities in the beets package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for free
Vulnerability Vulnerable Version
  • H
Arbitrary File Read

beets is a media library management system for obsessive music geeks.

Affected versions of this package are vulnerable to Arbitrary File Read via the splicing of a string from a URL request into the path to be opened.

How to fix Arbitrary File Read?

Upgrade beets to version 1.6.0 or higher.

[,1.6.0)