kovidgoyal

Top products

The 15 most recently published vulnerabilities affecting kovidgoyal.

• CVE-2026-54057Kitty vulnerable to command injection via unsanitized OSC 21 query reply7.8Jun 12, 2026
• CVE-2026-54056Kitty has an arbitrary file overwrite via symlink following in `kitten dnd` remote drop staging7.6Jun 12, 2026
• CVE-2026-54055Kitty has an Arbitrary File Write via Symlink Race Condition in File Transmission Protocol5.0Jun 12, 2026
• CVE-2026-42851@kitty-edit DCS + --color=geninclude vulnerable to Unauthenticated in-process RCE7.8Jun 12, 2026
• CVE-2026-42850Kitty has a shell command injection8.8Jun 12, 2026
• CVE-2026-33642Kitty has a Heap Buffer Over-Read/Write via Integer Overflow in compose_rectangles Bounds Check9.9May 19, 2026
• CVE-2026-33633Kitty has a Heap Buffer Overflow in its Graphics Protocol Handler7.5May 19, 2026
• CVE-2026-33206calibre has a path traversal vulnerability6.3Mar 27, 2026
• CVE-2026-33205calibre has Server-Side Request Forgery in ebook viewer backend5.5Mar 27, 2026
• CVE-2026-30853calibre has a Path Traversal Leading to Arbitrary File Write5.0Mar 13, 2026
• CVE-2026-27824calibre has IP Ban Bypass via X-Forwarded-For Header Spoofing5.3Feb 27, 2026
• CVE-2026-27810calibre Vulnerable to HTTP Response Header Injection6.4Feb 27, 2026
• CVE-2026-26065calibre: Path Traversal can Lead to Arbitrary File Write and Potential Code Execution8.8Feb 20, 2026
• CVE-2026-26064calibre: Path Traversal Vulnerability Enables Arbitrary File Write and Remote Code Execution8.8Feb 20, 2026
• CVE-2026-25731Calibre Affected by Arbitrary Code Execution via Server-Side Template Injection in Calibre HTML Export7.8Feb 6, 2026