PT-2026-38909 · Kareadita · Kavita

Kevin Stubbings

Published

2026-05-08

Updated

2026-05-26

CVE-2026-44776

CVSS v4.0

5.9

Medium

Vector

AV:N/AC:L/AT:P/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

Name of the Vulnerable Software and Affected Versions Kavita versions prior to 0.9.0

Description Lack of library-level authorization in the download, size-check, and chapter metadata endpoints allows a low-privileged user to access content from libraries they are not assigned to. By knowing or guessing the chapterId, volumeId, or seriesId, an attacker can download full file contents, query file sizes, and read metadata. The affected endpoints are '/api/Download/volume-size', '/api/Download/chapter-size', '/api/Download/series-size', '/api/Download/volume', '/api/Download/chapter', '/api/Download/series', and '/api/Chapter'.

Recommendations Update to version 0.9.0.

Exploit

Fix

IDOR

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-639

Related Identifiers

CVE-2026-44776

Affected Products

Kavita

PT-2026-38909 · Kareadita · Kavita

CVE-2026-44776

Weakness Enumeration

Related Identifiers

Affected Products

References · 4