Lucene search
+L

273 matches found

Prion
Prion
added 2022/04/04 6:15 p.m.23 views

Server side request forgery (ssrf)

Server-Side Request Forgery SSRF in GitHub repository janeczku/calibre-web prior to 0.6.18...

6.4CVSS9.3AI score0.01316EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2022/04/04 5:50 p.m.80 views

CVE-2022-0990

Calibre-Web (janeczku/calibre-web) is affected by a Server-Side Request Forgery (SSRF) vulnerability disclosed as CVE-2022-0990 in versions before 0.6.18. The issue is evidenced across multiple sources (NVD, Red Hat, Veracode, Huntr, CVE listings) describing SSRF in this project. Veracode notes t...

9.3CVSS9.4AI score0.01316EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2022/04/04 5:50 p.m.34 views

CVE-2022-0990 Server-Side Request Forgery (SSRF) in janeczku/calibre-web

Server-Side Request Forgery SSRF in GitHub repository janeczku/calibre-web prior to 0.6.18...

9.3CVSS9.5AI score0.01316EPSS
Exploits1References2
OSV
OSV
added 2022/04/04 5:50 p.m.21 views

CVE-2022-0990 Server-Side Request Forgery (SSRF) in janeczku/calibre-web

Server-Side Request Forgery SSRF in GitHub repository janeczku/calibre-web prior to 0.6.18...

9.3CVSS9.3AI score0.01316EPSS
Exploits1References4
ATTACKERKB
ATTACKERKB
added 2022/04/04 10:15 a.m.8 views

CVE-2022-0939

Server-Side Request Forgery SSRF in GitHub repository janeczku/calibre-web prior to 0.6.18...

9.9CVSS7.7AI score0.01042EPSS
Exploits1References3
NVD
NVD
added 2022/04/04 10:15 a.m.28 views

CVE-2022-0939

Server-Side Request Forgery SSRF in GitHub repository janeczku/calibre-web prior to 0.6.18...

9.9CVSS0.01042EPSS
Exploits1References2
Prion
Prion
added 2022/04/04 10:15 a.m.17 views

Server side request forgery (ssrf)

Server-Side Request Forgery SSRF in GitHub repository janeczku/calibre-web prior to 0.6.18...

7.5CVSS9.5AI score0.01042EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2022/04/04 9:40 a.m.92 views

CVE-2022-0939

CVE-2022-0939 affects Calibre-Web (janeczku/calibre-web) before 0.6.18. It is a Server-Side Request Forgery (SSRF) vulnerability, with multiple sources confirming an SSRF issue in this project prior to 0.6.18. Reported impacts include the ability for an attacker to induce the server to fetch reso...

9.9CVSS9.4AI score0.01042EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2022/04/04 9:40 a.m.32 views

CVE-2022-0939 Server-Side Request Forgery (SSRF) in janeczku/calibre-web

Server-Side Request Forgery SSRF in GitHub repository janeczku/calibre-web prior to 0.6.18...

9CVSS9.8AI score0.01042EPSS
Exploits1References2
OSV
OSV
added 2022/04/04 9:40 a.m.27 views

CVE-2022-0939 Server-Side Request Forgery (SSRF) in janeczku/calibre-web

Server-Side Request Forgery SSRF in GitHub repository janeczku/calibre-web prior to 0.6.18...

9CVSS9.2AI score0.01042EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2022/04/04 12:0 a.m.4 views

PT-2022-13540 · Unknown · Calibre-Web

Name of the Vulnerable Software and Affected Versions: calibre-web versions prior to 0.6.18 Description: The issue is related to Server-Side Request Forgery SSRF in the GitHub repository janeczku/calibre-web. SSRF is a type of attack where an attacker can trick a server into making requests to...

9.9CVSS9.1AI score0.01042EPSS
Exploits1References7
CNNVD
CNNVD
added 2022/04/04 12:0 a.m.5 views

Calibre-Web 代码问题漏洞

Calibre-Web is a web application for browsing, reading and downloading eBooks from the Calibre database. A code issue vulnerability exists in Calibre-Web versions prior to 0.6.18. No information about this vulnerability is available at this time, please stay tuned to CNNVD or the vendor's...

9.9CVSS8.3AI score0.01042EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2022/04/04 12:0 a.m.6 views

PT-2022-13575 · Unknown · Calibre-Web

Name of the Vulnerable Software and Affected Versions: calibre-web versions prior to 0.6.18 Description: The issue is related to Server-Side Request Forgery SSRF in the GitHub repository janeczku/calibre-web. SSRF is a type of attack where an attacker can trick a server into making requests to...

9.3CVSS9.2AI score0.01316EPSS
Exploits1References6
CNNVD
CNNVD
added 2022/04/04 12:0 a.m.6 views

Calibre-Web 代码问题漏洞

Calibre-Web is a web application for browsing, reading and downloading eBooks from the Calibre database. A code issue vulnerability exists in Calibre-Web 0.6.18, no information about this vulnerability is available at this time, please stay tuned to CNNVD or vendor announcements...

9.3CVSS8.3AI score0.01316EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2022/04/03 7:15 p.m.11 views

CVE-2022-0406

Improper Authorization in GitHub repository janeczku/calibre-web prior to 0.6.16...

4.3CVSS5.4AI score0.00653EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2022/04/03 7:15 p.m.10 views

CVE-2022-0405

Improper Access Control in GitHub repository janeczku/calibre-web prior to 0.6.16...

4.3CVSS5.4AI score0.00747EPSS
Exploits1References3
NVD
NVD
added 2022/04/03 7:15 p.m.29 views

CVE-2022-0406

Improper Authorization in GitHub repository janeczku/calibre-web prior to 0.6.16...

4.3CVSS0.00653EPSS
Exploits1References2
Prion
Prion
added 2022/04/03 7:15 p.m.15 views

Authorization

Improper Authorization in GitHub repository janeczku/calibre-web prior to 0.6.16...

4CVSS4.6AI score0.00653EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2022/04/03 7:5 p.m.36 views

CVE-2022-0406 Improper Authorization in janeczku/calibre-web

Improper Authorization in GitHub repository janeczku/calibre-web prior to 0.6.16...

4.3CVSS5AI score0.00653EPSS
Exploits1References2
CVE
CVE
added 2022/04/03 7:5 p.m.95 views

CVE-2022-0406

CVE-2022-0406 affects janeczku/calibre-web (Calibre-Web) prior to 0.6.16, with an improper authorization flaw in shelf order handling. The root cause cited: shelf.py order_shelf path does not verify user permissions before processing POST data, allowing low-privilege users to edit the sort order ...

4.3CVSS4.6AI score0.00653EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder