Описание
Unsanitized user-input in Calibre <= 7.15.0 allow attackers to perform reflected cross-site scripting.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| calibre | fixed | 7.16.0+ds-1 | package | |
| calibre | fixed | 6.13.0+repack-2+deb12u4 | bookworm | package |
| calibre | fixed | 5.12.0+dfsg-1+deb11u2 | bullseye | package |
Примечания
https://starlabs.sg/advisories/24/24-7008/
https://github.com/kovidgoyal/calibre/commit/863abac24e7bc3e5ca0b3307362ff1953ba53fe0 (v7.16.0)
EPSS
Процентиль: 94%
0.1358
Средний
Связанные уязвимости
CVSS3: 5.4
ubuntu
больше 1 года назад
Unsanitized user-input in Calibre <= 7.15.0 allow attackers to perform reflected cross-site scripting.
CVSS3: 5.4
nvd
больше 1 года назад
Unsanitized user-input in Calibre <= 7.15.0 allow attackers to perform reflected cross-site scripting.
CVSS3: 5.4
github
больше 1 года назад
Unsanitized user-input in Calibre <= 7.15.0 allow attackers to perform reflected cross-site scripting.
EPSS
Процентиль: 94%
0.1358
Средний