Vulnerabilities in BookStack

2 results

CVE-2023-6199MEDIUMBook Stack v23.10.2 - LFR via Blind SSRFEPSS 1.4%CVE-2022-40690MEDIUMCross-site scripting vulnerability in BookStack versions prior to v22.09 allows a remote authenticated attacker to inject an arbitrary scripEPSS 0.7%