Lucene search
Veracode Vulnerability DatabaseVERACODE:33967HistoryJan 31, 2022 - 8:02 a.m.
Cross-site Scripting (XSS)
2022-01-3108:02:36
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
4
0.001 Low
EPSS
Percentile
30.2%
calibreweb is vulnerable to cross-site scripting (XSS) attacks. The vulnerability exists due to improper sanitize input strings allowing attackers to steal cookies and inject arbitrary code into the victim’s web browser.
| CPE | Name | Operator | Version |
|---|---|---|---|
| calibreweb | le | 0.6.15 | |
| calibreweb | le | 0.6.15 |
Related
osv
osv
PYSEC-2022-18
2022-01-28 22:15:00
CVE-2022-0352
2022-01-28 22:15:15
Cross-site Scripting in calibreweb
2022-01-29 00:00:41
huntr
huntr
Cross-site Scripting (XSS) - Reflected in janeczku/calibre-web
2022-01-17 03:03:44
nvd
nvd
CVE-2022-0352
2022-01-28 22:15:15
cve
cve
CVE-2022-0352
2022-01-28 22:15:15
github
github
Cross-site Scripting in calibreweb
2022-01-29 00:00:41
prion
prion
Cross site scripting
2022-01-28 22:15:00
cvelist
cvelist
CVE-2022-0352 Cross-site Scripting (XSS) - Reflected in janeczku/calibre-web
2022-01-28 21:29:15