Vulnerabilities > CVE-2021-4164 - Unspecified vulnerability in Janeczku Calibre-Web
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
HIGH Integrity impact
HIGH Availability impact
HIGH Summary
calibre-web is vulnerable to Cross-Site Request Forgery (CSRF)
Vulnerable Configurations
References
- https://github.com/janeczku/calibre-web/commit/785726deee13b4d56f6c3503dd57c1e3eb7d6f30
- https://github.com/janeczku/calibre-web/commit/785726deee13b4d56f6c3503dd57c1e3eb7d6f30
- https://huntr.dev/bounties/2debace1-a0f3-45c1-95fa-9d0512680758
- https://huntr.dev/bounties/2debace1-a0f3-45c1-95fa-9d0512680758