CVE-2022-0273

Improper Access Control in janeczku/calibre-web

CVSS 4.3 MEDIUMEPSS 0.7%CWE-284

Improper Access Control in Pypi calibreweb prior to 0.6.16.

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

Affected products

janeczku · janeczku/calibre-web

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/janeczku/calibre-web/commit/0c0313f375bed7b035c8c0482bbb09599e16bfcf https://huntr.dev/bounties/8f27686f-d698-4ab6-8ef0-899125792f13