BookStack is the BookStackApp team’s open source platform for building wiki documents using PHP and Laravel. bookstack suffers from a cross-site request forgery vulnerability, which stems from the software’s lack of validation for cross-site request forgery. An attacker could use this vulnerability to spoof malicious requests to trick victims into clicking through to perform sensitive actions.