ssddanbrown/bookstack is vulnerable to Improper Access Control. An attacker is able to execute an error-based attack by obtaining a part of an email of the user.
CPE | Name | Operator | Version |
---|---|---|---|
ssddanbrown/bookstack | le | v21.11.2 | |
ssddanbrown/bookstack | le | v21.11.2 |