CVE-2026-44775 | Kareadita Kavita up to 0.8.x apiKey missing authentication (GHSA-6gc9-6r8p-5wg2)

May 26, 2026 Yanac

A vulnerability was found in Kareadita Kavita up to 0.8.x. It has been rated as critical. This affects an unknown part. This manipulation of the argument apiKey causes missing authentication.

This vulnerability is registered as CVE-2026-44775. Remote exploitation of the attack is possible. No exploit is available.

Upgrading the affected component is advised.VulDB Recent EntriesRead More