CVE-2025-7404 Information

Jul 25, 2025 cve

Description

Improper Neutralization of Special Elements used in an OS Command (‘OS Command Injection’) vulnerability in Calibre Web Autocaliweb allows Blind OS Command Injection.This issue affects Calibre Web: 0.6.24 (Nicolette); Autocaliweb: from 0.7.0 before 0.7.1.

Reference

https://fluidattacks.com/advisories/kino https://github.com/gelbphoenix/autocaliweb https://github.com/janeczku/calibre-web

CNNVD-202507-3121 (Published: 2025-07-24)

Share on:

CVE-2025-7404 Information

Description

Reference

Related CNNVD