janeczku

Top products

The 15 most recently published vulnerabilities affecting janeczku.

• CVE-2026-7709janeczku Calibre-Web Endpoint kobo_auth.py generate_auth_token improper authorization6.3May 3, 2026
• CVE-2025-65858A Stored Cross-Site Scripting (XSS) vulnerability in Calibre-Web v0.6.25 allows attackers to inject malicious JavaScript into the 'username' field during user creation. The payload is stored unsani...3.5Dec 2, 2025
• CVE-2025-7404Calibre Web 0.6.24 & Autocaliweb 0.7.0 - Blind C9.8Jul 24, 2025
• CVE-2021-3988Cross-site Scripting (XSS) in janeczku/calibre-web6.1Nov 15, 2024
• CVE-2021-3987Improper Access Control in janeczku/calibre-web4.3Nov 15, 2024
• CVE-2021-3986Information Disclosure in janeczku/calibre-web4.3Nov 15, 2024
• CVE-2024-39123In janeczku Calibre-Web 0.6.0 to 0.6.21, the edit_book_comments function is vulnerable to Cross Site Scripting (XSS) due to improper sanitization performed by the clean_string function. The vulnera...5.4Jul 19, 2024
• CVE-2023-2106Weak Password Requirements in janeczku/calibre-web9.8Apr 15, 2023
• CVE-2022-2525Improper Restriction of Excessive Authentication Attempts in janeczku/calibre-web9.8Apr 15, 2023
• CVE-2022-30765Calibre-Web before 0.6.18 allows user table SQL Injection.9.8May 16, 2022
• CVE-2022-0990Server-Side Request Forgery (SSRF) in janeczku/calibre-web9.1Apr 4, 2022
• CVE-2022-0939Server-Side Request Forgery (SSRF) in janeczku/calibre-web9.9Apr 4, 2022
• CVE-2022-0406Improper Authorization in janeczku/calibre-web4.3Apr 3, 2022
• CVE-2022-0405Improper Access Control in janeczku/calibre-web4.3Apr 3, 2022
• CVE-2022-0766Server-Side Request Forgery (SSRF) in janeczku/calibre-web9.8Mar 7, 2022