[MEDIUM] Cross-site scripting in demos/demo.mysqli.php in getID3

PKSA-1wkb-7v8z-r94v CVE-2021-40926 GHSA-x2gw-85w6-fjjw

Affected version: >=1.0.0,<1.9.21

Reported by:
GitHub

[HIGH] Potential XXE security issue

PKSA-jm5q-b1sm-tp44 CVE-2014-2053 GHSA-5v43-55m5-qr8f

Affected version: <1.9.9

Reported by:
GitHub, FriendsOfPHP/security-advisories