Количество 3
Количество 3
CVE-2024-39123
In janeczku Calibre-Web 0.6.0 to 0.6.21, the edit_book_comments function is vulnerable to Cross Site Scripting (XSS) due to improper sanitization performed by the clean_string function. The vulnerability arises from the way the clean_string function handles HTML sanitization.
CVE-2024-39123
In janeczku Calibre-Web 0.6.0 to 0.6.21, the edit_book_comments functi ...
GHSA-j22r-3rf3-cv25
Calibre-Web Cross Site Scripting (XSS)
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2024-39123 In janeczku Calibre-Web 0.6.0 to 0.6.21, the edit_book_comments function is vulnerable to Cross Site Scripting (XSS) due to improper sanitization performed by the clean_string function. The vulnerability arises from the way the clean_string function handles HTML sanitization. | CVSS3: 5.4 | 27% Средний | больше 1 года назад |
| CVE-2024-39123 In janeczku Calibre-Web 0.6.0 to 0.6.21, the edit_book_comments functi ... | CVSS3: 5.4 | 27% Средний | больше 1 года назад |
| GHSA-j22r-3rf3-cv25 Calibre-Web Cross Site Scripting (XSS) | CVSS3: 5.4 | 27% Средний | больше 1 года назад |
Уязвимостей на страницу