bookstack is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
References
Link | Resource |
---|---|
https://github.com/bookstackapp/bookstack/commit/5e6092aaf8fd420202016038286554860bf8ea64 | Patch Third Party Advisory |
https://huntr.dev/bounties/64a0229f-ff5e-4c64-b83e-9bfc0698a78e | Exploit Issue Tracking Patch Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: @huntrdev
Published: 2021-09-06T11:17:18
Updated: 2021-09-06T11:17:18
Reserved: 2021-09-04T00:00:00
Link: CVE-2021-3768
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-09-06T12:15:08.307
Modified: 2021-09-09T18:47:52.393
Link: CVE-2021-3768
JSON object: View
Redhat Information
No data.
CWE