VYPR

Calibre Web Automated

by Crocodilestick

Source repositories

CVEs (2)

  • CVE-2026-7714MedMay 4, 2026
    risk 0.35cvss 6.5epss 0.00

    A flaw has been found in crocodilestick Calibre-Web-Automated up to 4.0.6. Affected by this issue is some unknown functionality of the file cps/cwa_functions.py of the component Admin Endpoint. This manipulation causes missing authentication. It is possible to initiate the…

  • CVE-2026-7713MedMay 4, 2026
    risk 0.34cvss 6.3epss 0.00

    A vulnerability was detected in crocodilestick Calibre-Web-Automated up to 4.0.6. Affected by this vulnerability is the function generate_auth_token of the file cps/kobo_auth.py of the component Kobo auth-token Route. The manipulation results in improper authorization. The…