CVE-2024-39123 | janeczku Calibre-Web up to 0.6.21 edit_book_comments cross site scripting

Posted by Angelo Barbosa | Jul 19, 2024 | CVE

A vulnerability has been found in janeczku Calibre-Web up to 0.6.21 and classified as problematic. Affected by this vulnerability is the function edit_book_comments. The manipulation leads to cross site scripting.

This vulnerability is known as CVE-2024-39123. The attack can be launched remotely. There is no exploit available.

CVE-2024-39123 | janeczku Calibre-Web up to 0.6.21 edit_book_comments cross site scripting

Related Posts

CVE-2024-7292 | Progress Telerik Report Server up to 10.2.24.709 excessive authentication

CVE-2023-51662 | Snowflake .NET Driver up to 2.1.4 certificate validation (GHSA-hwcc-4cv8-cf3h)

CVE-2024-5773 | Netentsec NS-ASG Application Security Gateway 6.3 deletemacbind.php messagecontent sql injection

CVE-2023-52145 | Marios Alexandrou Republish Old Posts Plugin up to 1.21 on WordPress cross-site request forgery