Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
calibre-web project vulnerabilities and exploits
(subscribe to this query)
9.1
CVSSv3
CVE-2022-0990
Server-Side Request Forgery (SSRF) in GitHub repository janeczku/calibre-web before 0.6.18.
Calibre-web Project Calibre-web
8.8
CVSSv3
CVE-2021-4164
calibre-web is vulnerable to Cross-Site Request Forgery (CSRF)
Calibre-web Project Calibre-web
6.5
CVSSv3
CVE-2022-0273
Improper Access Control in Pypi calibreweb before 0.6.16.
Calibre-web Project Calibre-web
4.3
CVSSv3
CVE-2022-0405
Improper Access Control in GitHub repository janeczku/calibre-web before 0.6.16.
Calibre-web Project Calibre-web
9.9
CVSSv3
CVE-2022-0767
Server-Side Request Forgery (SSRF) in GitHub repository janeczku/calibre-web before 0.6.17.
Calibre-web Project Calibre-web
9.8
CVSSv3
CVE-2023-2106
Weak Password Requirements in GitHub repository janeczku/calibre-web before 0.6.20.
Calibre-web Project Calibre-web
9.8
CVSSv3
CVE-2022-30765
Calibre-Web prior to 0.6.18 allows user table SQL Injection.
Calibre-web Project Calibre-web 0.6.18
9.8
CVSSv3
CVE-2020-12627
Calibre-Web 0.6.6 allows authentication bypass because of the 'A0Zr98j/3yX R~XHH!jmN]LWX/,?RT' hardcoded secret key.
Calibre-web Project Calibre-web 0.6.6
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2