calibreweb prior to version 0.6.16 contains a Server-Side Request Forgery (SSRF) vulnerability.
github.com/janeczku/calibre-web
github.com/janeczku/calibre-web/commit/35f6f4c727c887f8f3607fe3233dbc1980d15020
github.com/janeczku/calibre-web/commit/3b216bfa07ec7992eff03e55d61732af6df9bb92
github.com/janeczku/calibre-web/releases/tag/0.6.16
huntr.dev/bounties/499688c4-6ac4-4047-a868-7922c3eab369
nvd.nist.gov/vuln/detail/CVE-2022-0339