CVE-2025-62614P2HIGHCVSS 8.7≤ 1.8.12025-10-22
CVE-2025-62614 [HIGH] CWE-862 CVE-2025-62614: BookLore is a self-hosted web app for organizing and managing personal book collections. In versions
BookLore is a self-hosted web app for organizing and managing personal book collections. In versions 1.8.1 and prior, an authentication bypass vulnerability in the BookMediaController allows any unauthenticated user to access and download book covers, thumbnails, and complete PDF/CBX page content without authorization. The vulnerability exists because
nvd