3 matches found
UBUNTU-CVE-2026-27824
calibre is a cross-platform e-book manager for viewing, converting, editing, and cataloging e-books. Prior to version 9.4.0, the calibre Content Server's brute-force protection mechanism uses a ban key derived from both remoteaddr and the X-Forwarded-For header. Since the X-Forwarded-For header i...
CVE-2026-27824 calibre has IP Ban Bypass via X-Forwarded-For Header Spoofing
calibre is a cross-platform e-book manager for viewing, converting, editing, and cataloging e-books. Prior to version 9.4.0, the calibre Content Server's brute-force protection mechanism uses a ban key derived from both remoteaddr and the X-Forwarded-For header. Since the X-Forwarded-For header i...
CVE-2006-7047
The CVE-2006-7047 entry concerns include.php in Shoutpro 1.0, where a crafted path parameter could bypass IP ban restrictions by referencing an alternate bannedips.php file. The CVE description notes that this was originally reported as remote file inclusion, but the analysis indicates it cannot ...