2 matches found
Cross-site Scripting (XSS) - Reflected in janeczku/calibre-web
Description There is a reflected XSS vulnerability on the site calibre-web. Proof of Concept 1. go to the calibre e-book management 2. create a new book give the title name 3. and give the title sort name 4. save and go to the website 5.go to Author 6.press one of the books 7. then right click an...
Calibre 0.7.34 Cross Site Scripting/ Directory Traversal
waraxe-2010-SA077 - Multiple Vulnerabilities in Calibre 0.7.34 =============================================================================== Author: Janek Vind "waraxe" Date: 20. December 2010 Location: Estonia, Tartu Web: http://www.waraxe.us/advisory-77.html Affected Software: Calibre is a fr...