{"id":"PYSEC-2022-22","details":"Improper Access Control in Pypi calibreweb prior to 0.6.16.","aliases":["CVE-2022-0273","GHSA-vgmw-9cww-qq99"],"modified":"2023-11-01T04:57:04.052361Z","published":"2022-01-30T14:15:00Z","references":[{"type":"FIX","url":"https://github.com/janeczku/calibre-web/commit/0c0313f375bed7b035c8c0482bbb09599e16bfcf"},{"type":"WEB","url":"https://huntr.dev/bounties/8f27686f-d698-4ab6-8ef0-899125792f13"},{"type":"ADVISORY","url":"https://github.com/advisories/GHSA-vgmw-9cww-qq99"}],"affected":[{"package":{"name":"calibreweb","ecosystem":"PyPI","purl":"pkg:pypi/calibreweb"},"ranges":[{"type":"GIT","repo":"https://github.com/janeczku/calibre-web","events":[{"introduced":"0"},{"fixed":"0c0313f375bed7b035c8c0482bbb09599e16bfcf"}]},{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0.6.16"}]}],"versions":["0.6.12","0.6.13","0.6.14","0.6.15"],"database_specific":{"source":"https://github.com/pypa/advisory-database/blob/main/vulns/calibreweb/PYSEC-2022-22.yaml"}}],"schema_version":"1.7.3"}