Vulnerabilities > Janeczku
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-03-07 | CVE-2022-0766 | Server-Side Request Forgery (SSRF) vulnerability in Janeczku Calibre-Web Server-Side Request Forgery (SSRF) in GitHub repository janeczku/calibre-web prior to 0.6.17. | 9.8 |
| 2022-03-07 | CVE-2022-0767 | Server-Side Request Forgery (SSRF) vulnerability in Janeczku Calibre-Web Server-Side Request Forgery (SSRF) in GitHub repository janeczku/calibre-web prior to 0.6.17. | 9.9 |
| 2022-01-30 | CVE-2022-0273 | Improper Access Control vulnerability in Janeczku Calibre-Web Improper Access Control in Pypi calibreweb prior to 0.6.16. | 6.5 |
| 2022-01-30 | CVE-2022-0339 | Server-Side Request Forgery (SSRF) vulnerability in Janeczku Calibre-Web Server-Side Request Forgery (SSRF) in Pypi calibreweb prior to 0.6.16. | 9.8 |
| 2022-01-28 | CVE-2022-0352 | Cross-site Scripting vulnerability in Janeczku Calibre-Web Cross-site Scripting (XSS) - Reflected in Pypi calibreweb prior to 0.6.16. | 6.1 |
| 2022-01-17 | CVE-2021-4164 | Cross-Site Request Forgery (CSRF) vulnerability in Janeczku Calibre-Web calibre-web is vulnerable to Cross-Site Request Forgery (CSRF) | 8.8 |
| 2022-01-17 | CVE-2021-4171 | Unspecified vulnerability in Janeczku Calibre-Web calibre-web is vulnerable to Business Logic Errors | 9.8 |
| 2022-01-16 | CVE-2021-4170 | Cross-site Scripting vulnerability in Janeczku Calibre-Web calibre-web is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') | 5.4 |
| 2021-11-16 | CVE-2021-25965 | Cross-Site Request Forgery (CSRF) vulnerability in Janeczku Calibre-Web In Calibre-web, versions 0.6.0 to 0.6.13 are vulnerable to Cross-Site Request Forgery (CSRF). | 8.8 |
| 2021-10-04 | CVE-2021-25964 | Cross-site Scripting vulnerability in Janeczku Calibre-Web In “Calibre-web” application, v0.6.0 to v0.6.12, are vulnerable to Stored XSS in “Metadata”. | 5.4 |