📦 Audiobookshelf

Name: Audiobookshelf
Author: Audiobookshelf

by Audiobookshelf

🔍 What is Audiobookshelf?

Description coming soon...

🛡️ Security Overview

Click on a severity to filter vulnerabilities

⚠️ Known Vulnerabilities

CVE-2025-25205

HIGH CVSS 8.2 Feb 12, 2025

A vulnerability in Audiobookshelf versions 2.17.0 through 2.19.0 allows unauthenticated attackers to bypass authentication by crafting URLs with specific substrings in query parameters. This can lead ...

CVE-2023-47619

HIGH CVSS 8.1 Dec 13, 2023

CVE-2023-47619 is a critical vulnerability in Audiobookshelf where users with update permissions can read arbitrary files, delete arbitrary files, and make unauthorized GET requests to external URLs. ...

CVE-2026-27963

MEDIUM CVSS 4.8 Feb 26, 2026

A stored cross-site scripting (XSS) vulnerability in Audiobookshelf allows attackers with library modification privileges to inject malicious JavaScript into library metadata. When other users view th...

CVE-2025-46338

MEDIUM CVSS 6.1 Apr 29, 2025

Audiobookshelf versions before 2.21.0 contain a reflected cross-site scripting (XSS) vulnerability in the /api/upload endpoint. Attackers can inject malicious JavaScript via the libraryId field, which...