Bookstack Security Vulnerabilities and Issues — Bookstack CVE List

Lucene search

BookstackappBookstack

4 matches found

CVE•added 2022/10/24 2:15 p.m.•42 views

CVE-2022-40690

Cross-site scripting vulnerability in BookStack versions prior to v22.09 allows a remote authenticated attacker to inject an arbitrary script.

5.4CVSS5.1AI score0.00459EPSS

CVE•added 2021/09/06 12:15 p.m.•38 views

CVE-2021-3767

bookstack is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

5.4CVSS5.4AI score0.00261EPSS

CVE•added 2018/01/03 8:29 p.m.•36 views

CVE-2017-1000462

BookStack version 0.18.4 is vulnerable to stored cross-site scripting, within the page creation page, which can result in disruption of service and execution of javascript code.

5.4CVSS5.4AI score0.0032EPSS

CVE•added 2021/09/06 12:15 p.m.•34 views

CVE-2021-3768

bookstack is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

5.4CVSS5.4AI score0.00181EPSS