CVE-2021-4170

Published January 16th, 2022

View on NVD ↗

CVSS v3

5.4

MEDIUM

CVSS v2

3.5

LOW

Affected

1

PROJECT

Description

calibre-web is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

janeczku/calibre-web

:books: Web app for browsing, reading and downloading eBooks stored in a Calibre database

GitHub

17.3K