Calibre
CVE-2024-7008
MEDIUM
Severity by source
AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Lifecycle Timeline
1DescriptionNVD
Unsanitized user-input in Calibre <= 7.15.0 allow attackers to perform reflected cross-site scripting.
AnalysisAI
Unsanitized user-input in Calibre <= 7.15.0 allow attackers to perform reflected cross-site scripting. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.
Technical ContextAI
This vulnerability is classified as Cross-Site Scripting (XSS) (CWE-79), which allows attackers to inject malicious scripts into web pages viewed by other users. Unsanitized user-input in Calibre <= 7.15.0 allow attackers to perform reflected cross-site scripting. Affected products include: Calibre-Ebook Calibre.
RemediationAI
A vendor patch is available. Apply the latest security update as soon as possible. Sanitize all user input, use Content-Security-Policy headers, encode output contextually (HTML, JS, URL). Use frameworks with built-in XSS protection.
Remote code execution in Calibre 9.2.1 and earlier allows authenticated users to write arbitrary files via a path traver
Calibre versions 9.2.1 and below allow authenticated users to write arbitrary files with any extension to any writable l
Remote code execution in Calibre prior to version 9.2.0 through a path traversal flaw in the CHM reader allows local att
Calibre 9.1.0 and earlier contains a path traversal vulnerability in EPUB conversion that allows malicious EPUB files to
calibre is an e-book manager. [CVSS 7.8 HIGH]
gui2/viewer/bookmarkmanager.py in Calibre 3.18 calls cPickle.load on imported bookmark data, which allows remote attacke
Path traversal in Calibre <= 7.14.0 allow unauthenticated attackers to achieve arbitrary file read. Rated high severity
link_to_local_path in ebooks/conversion/plugins/html_input.py in calibre before 6.19.0 can, by default, add resources ou
calibre before 5.32.0 contains a regular expression that is vulnerable to ReDoS (Regular Expression Denial of Service) i
Unsanitized user-input in Calibre <= 7.15.0 allow users with permissions to perform full-text searches to achieve SQL in
HTTP response header injection in Calibre Content Server prior to version 9.4.0 permits authenticated users to inject ar
The E-book viewer in calibre before 2.75 allows remote attackers to read arbitrary files via a crafted epub file with Ja
Same weakness CWE-79 – Cross-site Scripting (XSS)
View allShare
External POC / Exploit Code
Leaving vuln.today