ssddanbrown/bookstack Security Advisories for v0.25.2 (10)
-
[HIGH] BookStack Incorrect Access Control vulnerability
PKSA-z94v-r8dc-wkqh CVE-2024-36676 GHSA-pj36-fcrg-327j
Affected version: <24.05.1
Reported by:
GitHub -
[HIGH] Bookstack Cross-site Scripting vulnerability
PKSA-pw3d-pt95-h1ms CVE-2020-26211 GHSA-ch37-ch8w-cfrq
Affected version: <0.30.4
Reported by:
GitHub -
[MEDIUM] Cross-site Scripting in BookStack
PKSA-y7g1-3wsd-dg6y CVE-2022-0877 GHSA-5rcc-6cmj-7728
Affected version: <22.02.3
Reported by:
GitHub -
[MEDIUM] bookstack is vulnerable to Improper Access Control
PKSA-4hzf-qg42-jj62 CVE-2021-4194 GHSA-ghhm-xrwp-75m9
Affected version: <21.12.1
Reported by:
GitHub -
[MEDIUM] BookStack is vulnerable to Improper Access Control.
PKSA-8y3x-62kx-83g2 CVE-2021-4119 GHSA-9c5c-5j4h-8q2c
Affected version: <21.11.3
Reported by:
GitHub -
[LOW] bookstack is vulnerable to Cross-Site Request Forgery (CSRF)
PKSA-f7md-mtf6-xqpb CVE-2021-3944 GHSA-wc7v-77jr-5c3m
Affected version: <21.11
Reported by:
GitHub -
[MEDIUM] bookstack is vulnerable to Improper Access Control
PKSA-5p3b-wcdt-s1y3 CVE-2021-4026 GHSA-jm6p-wfjg-xm7x
Affected version: <21.11.2
Reported by:
GitHub -
[HIGH] bookstack is vulnerable to Unrestricted Upload of File with Dangerous Type
PKSA-k1b3-19nx-n7vg CVE-2021-3915 GHSA-w2f4-hxpm-mq98
Affected version: <21.0.3
Reported by:
GitHub -
[MEDIUM] Cross-Site Scripting in BookStack
PKSA-2p6g-hkrk-h4dz CVE-2020-11055 GHSA-5vf7-q87h-pg6w
Affected version: >=0.18.0,<0.29.2
Reported by:
GitHub -
[HIGH] Remote Code Execution Through Image Uploads in BookStack
PKSA-cmfc-try3-j3hr CVE-2020-5256 GHSA-g9rq-x4fj-f5hx
Affected version: <0.25.3
Reported by:
GitHub