cbcvebase.
CVE-2026-25731
published 2026-02-06

CVE-2026-25731: calibre is an e-book manager. Prior to 9.2.0, a Server-Side Template Injection (SSTI) vulnerability in Calibre's Templite templating engine allows arbitrary…

PriorityP343high7.8CVSS 3.1
AVLACLPRNUIRSUCHIHAH
EPSS
0.24%
15.1th percentile
calibre is an e-book manager. Prior to 9.2.0, a Server-Side Template Injection (SSTI) vulnerability in Calibre's Templite templating engine allows arbitrary code execution when a user converts an ebook using a malicious custom template file via the --template-html or --template-html-index command-line options. This vulnerability is fixed in 9.2.0.

Affected

4 ranges
VendorProductVersion rangeFixed in
calibre-ebookcalibre< 9.2.09.2.0
debiancalibre< calibre 9.2.0+ds+~0.10.5-1 (forky)calibre 9.2.0+ds+~0.10.5-1 (forky)
kovidgoyalcalibre< 9.2.09.2.0
kovidgoyalcalibre>= 0 < 9.2.0+ds+~0.10.5-19.2.0+ds+~0.10.5-1

CVSS provenance

nvdv3.17.8HIGHCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
osv7.8HIGH
vendor_debian7.8HIGH
vendor_redhat7.8HIGH
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.