ebookmeta@1.2.2 vulnerabilities

Read/write ebook metadata for fb2, epub2 and epub3 files

Direct Vulnerabilities

Known vulnerabilities in the ebookmeta package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for free
Vulnerability Vulnerable Version
  • H
Improper Restriction of Recursive Entity References in DTDs ('XML Entity Expansion')

ebookmeta is a Read/write ebook metadata for fb2, epub2 and epub3 files

Affected versions of this package are vulnerable to Improper Restriction of Recursive Entity References in DTDs ('XML Entity Expansion') via the get_metadata function. An attacker can access sensitive information or disrupt service by supplying specially crafted XML input.

How to fix Improper Restriction of Recursive Entity References in DTDs ('XML Entity Expansion')?

There is no fixed version for ebookmeta.

[0,)