CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

OSV•added 2023/11/20 11:15 p.m.•7 views

CVE-2023-6199

Book Stack version 23.10.2 allows filtering local files on the server. This is possible because the application is vulnerable to SSRF...

6.5CVSS6.3AI score

Exploits0References2

NVD•added 2023/11/20 11:15 p.m.•10 views

CVE-2023-6199

Book Stack version 23.10.2 allows filtering local files on the server. This is possible because the application is vulnerable to SSRF...

6.5CVSS0.13376EPSS

Exploits3References2

Prion•added 2023/11/20 11:15 p.m.•11 views

Server side request forgery (ssrf)

Book Stack version 23.10.2 allows filtering local files on the server. This is possible because the application is vulnerable to SSRF...

4CVSS6.9AI score0.13376EPSS

Exploits3References2Affected Software1

EUVD•added 2023/11/20 10:21 p.m.•2 views

EUVD-2023-58447

Book Stack version 23.10.2 allows filtering local files on the server. This is possible because the application is vulnerable to SSRF...

6.5CVSS6.3AI score0.13376EPSS

Exploits3References2

Cvelist•added 2023/11/20 10:21 p.m.•13 views

CVE-2023-6199 Book Stack v23.10.2 - LFR via Blind SSRF

Book Stack version 23.10.2 allows filtering local files on the server. This is possible because the application is vulnerable to SSRF...

6.5CVSS7AI score0.13376EPSS

Exploits3References2

CVE•added 2023/11/20 10:21 p.m.•64 views

CVE-2023-6199

The CVE-2023-6199 entry concerns Book Stack (BookStack) v23.10.2 with a Server-Side Request Forgery flaw that enables Local File Read via SSRF. The connected exploits/documentation show an attack chain using php://filter to read server files (e.g., /etc/passwd) by abusing the SSRF entry point ( o...

6.5CVSS6.4AI score0.13376EPSS

Exploits3References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by