2 matches found
CVE-2021-3874
bookstack is vulnerable to Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal'...
CVE-2021-3874
CVE-2021-3874: Path traversal in bookstackapp/bookstack (BookStack) due to improper restriction of restricted-directory pathnames. Impact described in connected sources as exposure of sensitive files via crafted pathnames (e.g., accessing logs/.htaccess) in BookStack export/filesystem operations....