5 matches found
CVE-2023-6199
creationtimestamp| type| source ---|---|--- 2025-03-01 04:00:08+00:00| published-proof-of-concept| Telegram/ls5pBYM84UZmjIUkKwEvzEYTa7VVVZNYSFnPnm8PGEaDU0 2025-03-03 21:02:36+00:00| seen| https://bsky.app/profile/beikokucyber.bsky.social/post/3ljitwsj6tl2d...
Exploit for Server-Side Request Forgery in Bookstackapp Bookstack
PHP filter chains: file read from error-based oracle. Updated...
CVE-2023-6199
Book Stack version 23.10.2 allows filtering local files on the server. This is possible because the application is vulnerable to SSRF...
CVE-2023-6199 Book Stack v23.10.2 - LFR via Blind SSRF
Book Stack version 23.10.2 allows filtering local files on the server. This is possible because the application is vulnerable to SSRF...
CVE-2023-6199
The CVE-2023-6199 entry concerns Book Stack (BookStack) v23.10.2 with a Server-Side Request Forgery flaw that enables Local File Read via SSRF. The connected exploits/documentation show an attack chain using php://filter to read server files (e.g., /etc/passwd) by abusing the SSRF entry point ( o...