Every CVE whose affected-product data names Dnkorpushov Ebookmeta, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2024-37388 — CVSS 9.1 (critical): An XML External Entity (XXE) vulnerability in the ebookmeta.get_metadata function of lxml before v4.9.1 allows attackers to access…
CVE-2024-36827 — CVSS 7.5 (high): An XML External Entity (XXE) vulnerability in the ebookmeta.get_metadata function of ebookmeta before v1.2.8 allows attackers to access…