ID | CVSS | Summary | Last (major) update | Published | |
CVE-2021-4170 | 3.5 |
calibre-web is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
|
22-01-2022 - 03:12 | 16-01-2022 - 21:15 | |
CVE-2021-4171 | 7.5 |
calibre-web is vulnerable to Business Logic Errors
|
24-01-2022 - 18:36 | 17-01-2022 - 10:15 | |
CVE-2021-4164 | 6.8 |
calibre-web is vulnerable to Cross-Site Request Forgery (CSRF)
|
22-01-2022 - 03:47 | 17-01-2022 - 13:15 | |
CVE-2022-0352 | 4.3 |
Cross-site Scripting (XSS) - Reflected in Pypi calibreweb prior to 0.6.16.
|
14-02-2022 - 12:15 | 28-01-2022 - 22:15 | |
CVE-2022-0339 | 7.5 |
Server-Side Request Forgery (SSRF) in Pypi calibreweb prior to 0.6.16.
|
14-02-2022 - 12:15 | 30-01-2022 - 14:15 | |
CVE-2022-0273 | 4.0 |
Improper Access Control in Pypi calibreweb prior to 0.6.16.
|
14-02-2022 - 12:15 | 30-01-2022 - 14:15 | |
CVE-2022-0766 | 7.5 |
Server-Side Request Forgery (SSRF) in GitHub repository janeczku/calibre-web prior to 0.6.17.
|
11-03-2022 - 17:08 | 07-03-2022 - 07:15 | |
CVE-2022-0406 | 4.0 |
Improper Authorization in GitHub repository janeczku/calibre-web prior to 0.6.16.
|
09-04-2022 - 15:52 | 03-04-2022 - 19:15 | |
CVE-2022-0405 | 4.0 |
Improper Access Control in GitHub repository janeczku/calibre-web prior to 0.6.16.
|
11-04-2022 - 16:07 | 03-04-2022 - 19:15 | |
CVE-2022-0939 | 7.5 |
Server-Side Request Forgery (SSRF) in GitHub repository janeczku/calibre-web prior to 0.6.18.
|
11-04-2022 - 17:30 | 04-04-2022 - 10:15 | |
CVE-2022-0990 | 6.4 |
Server-Side Request Forgery (SSRF) in GitHub repository janeczku/calibre-web prior to 0.6.18.
|
12-04-2022 - 09:24 | 04-04-2022 - 18:15 | |
CVE-2022-2525 | None |
Improper Restriction of Excessive Authentication Attempts in GitHub repository janeczku/calibre-web prior to 0.6.20.
|
24-04-2023 - 18:50 | 15-04-2023 - 13:15 | |
CVE-2023-2106 | None |
Weak Password Requirements in GitHub repository janeczku/calibre-web prior to 0.6.20.
|
25-04-2023 - 16:29 | 15-04-2023 - 14:15 |