21 matches found
CVE-2022-0877
CVE-2022-0877 affects the BookStack project (bookstackapp/bookstack). A Cross-site Scripting (XSS) vulnerability is stored in the repository prior to v22.02.3. Public sources in the connected set confirm the issue and reference the affected version range, with remediation noted as upgrading to v2...
CVE-2023-4624
CVE-2023-4624: SSRF in BookStack (bookstackapp/bookstack) prior to v23.08. The issue is a server-side request forgery in the application’s handling of requests, enabling the server to be coerced into making unintended outbound requests. Affected product: BookStack software; vulnerable component/f...
CVE-2020-11055
BookStack versions >= 0.18.0 and
CVE-2020-5256
BookStack before version 0.25.5 is vulnerable to remote code execution via image uploads, allowing an attacker to upload PHP files and execute code with the PHP process privileges. The issue affects scenarios where non-trusted users can upload images and was addressed by patches in v0.25.3, v0.25...
CVE-2021-4119
BookStack CVE-2021-4119 describes an Improper Access Control vulnerability in BookStack prior to version 21.11.3. The OSV/GHSA entries specify that a logged-in user with no privileges or a guest user (if public access is enabled) can access the /search/users/select endpoint (intended for admins) ...
CVE-2021-3915
CVE-2021-3915 affects BookStack (BookStackApp) and is due to a lack of file type restrictions in the controller, enabling Unrestricted Upload of files with dangerous types. Variants are noted across multiple feeds (NVD, CNVD, GHSA, RH—Red Hat) with exploit guidance not provided in the supplied do...
CVE-2021-4194
CVE-2021-4194 is linked to BookStack (bookstackapp/bookstack) and described across multiple feeds as an Improper Access Control vulnerability. The connected documents identify the issue as an access control error but do not provide concrete technical details such as affected versions, root-cause ...
CVE-2023-6199
The CVE-2023-6199 entry concerns Book Stack (BookStack) v23.10.2 with a Server-Side Request Forgery flaw that enables Local File Read via SSRF. The connected exploits/documentation show an attack chain using php://filter to read server files (e.g., /etc/passwd) by abusing the SSRF entry point ( o...
CVE-2021-4026
CVE-2021-4026 affects BookStack (open-source PHP/Laravel app). The vulnerability is an Improper Access Control in which users with API access can view attachments they should not have read access to, potentially exposing sensitive information. The issue is documented across multiple feeds (NVD en...
CVE-2020-26211
In BookStack
CVE-2021-3944
CVE-2021-3944 affects BookStack. Multiple connected sources confirm a cross-site request forgery (CSRF) vulnerability in BookStack/BookStackApp, caused by insufficient CSRF validation. Documented details indicate the issue is CSRF without explicit exploitation vectors or patched versions in the p...
CVE-2022-40690
CVE-2022-40690 is a cross-site scripting vulnerability in BookStack versions prior to v22.09. The issue allows a remote authenticated attacker to inject arbitrary JavaScript, executed in the browser of users accessing BookStack content (including via API usage). Affected component: BookStack web ...
CVE-2020-26210
CVE-2020-26210 affects BookStack prior to version 0.30.4. A user with page-edit permissions could insert an attached link that executes untrusted JavaScript when a viewer clicks it, potentially leaving dangerous content in the database. The issue is fixed in 0.30.4. Workarounds include restrictin...
CVE-2017-1000462
BookStack 0.18.4 is affected by a stored cross-site scripting vulnerability in the page creation page. The issue may disrupt service and allow execution of arbitrary JavaScript within affected pages. No remediation or patch details are provided in the connected documents. Exploitation status is n...
CVE-2021-3767
BookStack (CVE-2021-3767) is affected by a stored Cross-site Scripting (XSS) vulnerability in bookstackapp/bookstack caused by improper neutralization of input during web page generation. Public descriptions and PoCs show injected SVG content (notably via SVG elements and xlink:href) can lead to ...
CVE-2021-3906
CVE-2021-3906 affects BookStack (bookstackapp/bookstack) via Unrestricted Upload of File with Dangerous Type. The root cause is a validation bypass: trim is applied to single-quoted strings, so an extension like pngr becomes png after trimming, allowing dangerous files to pass validation. This en...
CVE-2021-3916
CVE-2021-3916 affects BookStack (bookstackapp/bookstack). The vulnerability is an Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) in the web-facing file handling, enabling access to files under the storage directory via crafted pathnames. The PoC demonstrates traversa...
CVE-2021-3768
CVE-2021-3768 affects BookStack and stems from Improper Neutralization of Input During Web Page Generation, enabling stored Cross-Site Scripting (XSS). The vulnerability affects input handling in bookstack app/book pages and can lead to leakage of administrator cookies and other impacts as descri...
CVE-2020-26260
Summary: CVE-2020-26260 affects BookStack prior to v0.30.5. A user with page-edit permissions could set certain image URLs to manipulate the exporting system, enabling server-side requests and access to a wider scope of files within BookStack’s file storage. Root cause / impact (as stated): The v...
CVE-2021-3758
CVE-2021-3758 affects BookStack (bookstackapp/bookstack). The vulnerability is an SSRF flaw in how a page exported to PDF handles HTML content (e.g., an tag referencing external resources). The PoC shows server-side requests triggered during PDF export, enabling access to internal resources from...
CVE-2021-3874
CVE-2021-3874: Path traversal in bookstackapp/bookstack (BookStack) due to improper restriction of restricted-directory pathnames. Impact described in connected sources as exposure of sensitive files via crafted pathnames (e.g., accessing logs/.htaccess) in BookStack export/filesystem operations....