Show filters
21 Total Results
Displaying 1-10 of 21
Sort by:
Attacker Value
Unknown
CVE-2023-6199
Disclosure Date: November 20, 2023 (last updated June 08, 2024)
Book Stack version 23.10.2 allows filtering local files on the server. This is possible because the application is vulnerable to SSRF.
0
Attacker Value
Unknown
CVE-2023-4624
Disclosure Date: August 30, 2023 (last updated October 08, 2023)
Server-Side Request Forgery (SSRF) in GitHub repository bookstackapp/bookstack prior to v23.08.
0
Attacker Value
Unknown
CVE-2022-40690
Disclosure Date: October 24, 2022 (last updated October 08, 2023)
Cross-site scripting vulnerability in BookStack versions prior to v22.09 allows a remote authenticated attacker to inject an arbitrary script.
0
Attacker Value
Unknown
CVE-2022-0877
Disclosure Date: March 08, 2022 (last updated February 23, 2025)
Cross-site Scripting (XSS) - Stored in GitHub repository bookstackapp/bookstack prior to v22.02.3.
0
Attacker Value
Unknown
CVE-2021-4194
Disclosure Date: January 06, 2022 (last updated February 23, 2025)
bookstack is vulnerable to Improper Access Control
0
Attacker Value
Unknown
CVE-2021-4119
Disclosure Date: December 15, 2021 (last updated February 23, 2025)
bookstack is vulnerable to Improper Access Control
0
Attacker Value
Unknown
CVE-2021-3944
Disclosure Date: December 02, 2021 (last updated February 23, 2025)
bookstack is vulnerable to Cross-Site Request Forgery (CSRF)
0
Attacker Value
Unknown
CVE-2021-4026
Disclosure Date: November 30, 2021 (last updated February 23, 2025)
bookstack is vulnerable to Improper Access Control
0
Attacker Value
Unknown
CVE-2021-3915
Disclosure Date: November 13, 2021 (last updated February 23, 2025)
bookstack is vulnerable to Unrestricted Upload of File with Dangerous Type
0
Attacker Value
Unknown
CVE-2021-3916
Disclosure Date: November 05, 2021 (last updated February 23, 2025)
bookstack is vulnerable to Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
0
