Vulnerabilities > Bookstackapp > Bookstack > 0.31.7

DATE CVE VULNERABILITY TITLE RISK
2021-10-15 CVE-2021-3874 Path Traversal vulnerability in Bookstackapp Bookstack
bookstack is vulnerable to Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
network
low complexity
bookstackapp CWE-22
6.5
6.5
2021-09-06 CVE-2021-3767 Cross-site Scripting vulnerability in Bookstackapp Bookstack
bookstack is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
network
low complexity
bookstackapp CWE-79
5.4
5.4
2021-09-06 CVE-2021-3768 Cross-site Scripting vulnerability in Bookstackapp Bookstack
bookstack is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
network
low complexity
bookstackapp CWE-79
5.4
5.4
2021-09-02 CVE-2021-3758 Server-Side Request Forgery (SSRF) vulnerability in Bookstackapp Bookstack
bookstack is vulnerable to Server-Side Request Forgery (SSRF)
network
low complexity
bookstackapp CWE-918
6.5
6.5