Vulnerabilities > Janeczku

DATE CVE VULNERABILITY TITLE RISK
2022-03-07 CVE-2022-0766 Server-Side Request Forgery (SSRF) vulnerability in Janeczku Calibre-Web
Server-Side Request Forgery (SSRF) in GitHub repository janeczku/calibre-web prior to 0.6.17.
network
low complexity
janeczku CWE-918
critical
9.8
2022-03-07 CVE-2022-0767 Server-Side Request Forgery (SSRF) vulnerability in Janeczku Calibre-Web
Server-Side Request Forgery (SSRF) in GitHub repository janeczku/calibre-web prior to 0.6.17.
network
low complexity
janeczku CWE-918
critical
9.9
2022-01-30 CVE-2022-0273 Unspecified vulnerability in Janeczku Calibre-Web
Improper Access Control in Pypi calibreweb prior to 0.6.16.
network
low complexity
janeczku
6.5
2022-01-30 CVE-2022-0339 Unspecified vulnerability in Janeczku Calibre-Web
Server-Side Request Forgery (SSRF) in Pypi calibreweb prior to 0.6.16.
network
low complexity
janeczku
critical
9.8
2022-01-28 CVE-2022-0352 Unspecified vulnerability in Janeczku Calibre-Web
Cross-site Scripting (XSS) - Reflected in Pypi calibreweb prior to 0.6.16.
network
low complexity
janeczku
6.1
2022-01-17 CVE-2021-4164 Unspecified vulnerability in Janeczku Calibre-Web
calibre-web is vulnerable to Cross-Site Request Forgery (CSRF)
network
low complexity
janeczku
8.8
2022-01-17 CVE-2021-4171 Unspecified vulnerability in Janeczku Calibre-Web
calibre-web is vulnerable to Business Logic Errors
network
low complexity
janeczku
critical
9.8
2022-01-16 CVE-2021-4170 Unspecified vulnerability in Janeczku Calibre-Web
calibre-web is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
network
low complexity
janeczku
5.4
2021-11-16 CVE-2021-25965 Cross-Site Request Forgery (CSRF) vulnerability in Janeczku Calibre-Web
In Calibre-web, versions 0.6.0 to 0.6.13 are vulnerable to Cross-Site Request Forgery (CSRF).
network
low complexity
janeczku CWE-352
8.8
2021-10-04 CVE-2021-25964 Cross-site Scripting vulnerability in Janeczku Calibre-Web
In “Calibre-web” application, v0.6.0 to v0.6.12, are vulnerable to Stored XSS in “Metadata”.
network
low complexity
janeczku CWE-79
5.4