Calibre-web Security Vulnerabilities and Issues — Calibre-web CVE List

Lucene search

JaneczkuCalibre-web

13 matches found

CVE•added 2022/03/07 7:15 a.m.•116 views

CVE-2022-0767

Server-Side Request Forgery (SSRF) in GitHub repository janeczku/calibre-web prior to 0.6.17.

9.9CVSS9.5AI score0.00187EPSS

CVE•added 2022/03/07 7:15 a.m.•106 views

CVE-2022-0766

Server-Side Request Forgery (SSRF) in GitHub repository janeczku/calibre-web prior to 0.6.17.

9.8CVSS8AI score0.00274EPSS

CVE•added 2022/05/16 2:15 a.m.•86 views

CVE-2022-30765

Calibre-Web before 0.6.18 allows user table SQL Injection.

9.8CVSS9.6AI score0.0025EPSS

CVE•added 2022/01/30 2:15 p.m.•80 views

CVE-2022-0339

Server-Side Request Forgery (SSRF) in Pypi calibreweb prior to 0.6.16.

9.8CVSS7.8AI score0.00245EPSS

CVE•added 2022/01/16 9:15 p.m.•78 views

CVE-2021-4170

calibre-web is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

7.3CVSS5.7AI score0.00282EPSS

CVE•added 2022/04/03 7:15 p.m.•78 views

CVE-2022-0406

Improper Authorization in GitHub repository janeczku/calibre-web prior to 0.6.16.

4.3CVSS4.6AI score0.00127EPSS

CVE•added 2022/04/04 10:15 a.m.•77 views

CVE-2022-0939

Server-Side Request Forgery (SSRF) in GitHub repository janeczku/calibre-web prior to 0.6.18.

9.9CVSS9.4AI score0.00247EPSS

CVE•added 2022/04/03 7:15 p.m.•70 views

CVE-2022-0405

Improper Access Control in GitHub repository janeczku/calibre-web prior to 0.6.16.

4.3CVSS4.6AI score0.00124EPSS

CVE•added 2022/01/28 10:15 p.m.•64 views

CVE-2022-0352

Cross-site Scripting (XSS) - Reflected in Pypi calibreweb prior to 0.6.16.

8.5CVSS6.1AI score0.00318EPSS

CVE•added 2022/01/17 10:15 a.m.•63 views

CVE-2021-4171

calibre-web is vulnerable to Business Logic Errors

9.8CVSS8.6AI score0.00441EPSS

CVE•added 2022/04/04 6:15 p.m.•63 views

CVE-2022-0990

Server-Side Request Forgery (SSRF) in GitHub repository janeczku/calibre-web prior to 0.6.18.

9.3CVSS9.4AI score0.00273EPSS

CVE•added 2022/01/30 2:15 p.m.•61 views

CVE-2022-0273

Improper Access Control in Pypi calibreweb prior to 0.6.16.

6.5CVSS5.2AI score0.00134EPSS

CVE•added 2022/01/17 1:15 p.m.•60 views

CVE-2021-4164

calibre-web is vulnerable to Cross-Site Request Forgery (CSRF)

8.8CVSS8.2AI score0.00134EPSS