VYPR
Moderate severityNVD Advisory· Published Jan 16, 2022· Updated Aug 3, 2024

Cross-site Scripting (XSS) - Stored in janeczku/calibre-web

CVE-2021-4170

Description

calibre-web is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
calibrewebPyPI
< 0.6.150.6.15

Affected products

2

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.