Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
calibre-web project calibre-web vulnerabilities and exploits
(subscribe to this query)
9.9
CVSSv3
CVE-2022-0939
Server-Side Request Forgery (SSRF) in GitHub repository janeczku/calibre-web before 0.6.18.
Calibre-web Project Calibre-web
9.9
CVSSv3
CVE-2022-0767
Server-Side Request Forgery (SSRF) in GitHub repository janeczku/calibre-web before 0.6.17.
Calibre-web Project Calibre-web
9.8
CVSSv3
CVE-2023-2106
Weak Password Requirements in GitHub repository janeczku/calibre-web before 0.6.20.
Calibre-web Project Calibre-web
9.8
CVSSv3
CVE-2022-2525
Improper Restriction of Excessive Authentication Attempts in GitHub repository janeczku/calibre-web before 0.6.20.
Calibre-web Project Calibre-web
9.8
CVSSv3
CVE-2022-30765
Calibre-Web prior to 0.6.18 allows user table SQL Injection.
Calibre-web Project Calibre-web 0.6.18
9.8
CVSSv3
CVE-2022-0766
Server-Side Request Forgery (SSRF) in GitHub repository janeczku/calibre-web before 0.6.17.
Calibre-web Project Calibre-web
9.8
CVSSv3
CVE-2022-0339
Server-Side Request Forgery (SSRF) in Pypi calibreweb before 0.6.16.
Calibre-web Project Calibre-web
9.8
CVSSv3
CVE-2021-4171
calibre-web is vulnerable to Business Logic Errors
Calibre-web Project Calibre-web
9.8
CVSSv3
CVE-2020-12627
Calibre-Web 0.6.6 allows authentication bypass because of the 'A0Zr98j/3yX R~XHH!jmN]LWX/,?RT' hardcoded secret key.
Calibre-web Project Calibre-web 0.6.6
9.1
CVSSv3
CVE-2022-0990
Server-Side Request Forgery (SSRF) in GitHub repository janeczku/calibre-web before 0.6.18.
Calibre-web Project Calibre-web
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »