3 matches found
CVE-2022-40690
Cross-site scripting vulnerability in BookStack versions prior to v22.09 allows a remote authenticated attacker to inject an arbitrary script...
CVE-2022-40690
Cross-site scripting vulnerability in BookStack versions prior to v22.09 allows a remote authenticated attacker to inject an arbitrary script...
CVE-2022-40690
CVE-2022-40690 is a cross-site scripting vulnerability in BookStack versions prior to v22.09. The issue allows a remote authenticated attacker to inject arbitrary JavaScript, executed in the browser of users accessing BookStack content (including via API usage). Affected component: BookStack web ...