v0.5.4.1 - Security Hotfix
Published on August 8, 2022 by Joseph Milazzo
This is a security hotfix, please update immediately! Several high severity issues were disclosed to the Kavita team this morning that require an immediate hotfix.
Thanks vultza for disclosing these issues through Huntr.
The full release can be found [here](https://github.com/Kareadita/Kavita/releases/tag/v0.5.4.1).
Thanks vultza for disclosing these issues through Huntr.
The full release can be found [here](https://github.com/Kareadita/Kavita/releases/tag/v0.5.4.1).
Added
- After 5 login attempts, Kavita will impose a 10 min lockout before authentication can be retried
Fixed
- Fixed an exploit that allowed a user to change the admin user's account password, thus taking ownership of the server
- Fixed an exploit that would allow an unauthorized user to delete reading list items within a user's reading list
- Fixed an exploit that allowed a user to abuse an API and leak sensitive files from the system
- Fixed an exploit that allowed an unauthenticated user to download pdfs from the server
- Fixed an exploit (SSRF) that would allow a user to upload a cover image that isn't an image