CVE-2023-46303

Published October 22nd, 2023

View on NVD ↗

CVSS v3

7.5

HIGH

CVSS v2

N/A

Affected

2

PROJECTS

Description

link_to_local_path in ebooks/conversion/plugins/html_input.py in calibre before 6.19.0 can, by default, add resources outside of the document root.

kovidgoyal/calibre

The official source code repository for the calibre ebook manager

GitHub

25K

0x1717/ssrf-via-imgUNAVAILABLE

CVE-2023-46303 - SSRF Vulnerability in PANDOC and CALIBRE

GitHub