Vulnerabilities > Bookstackapp > Bookstack > 21.04.4

DATE CVE VULNERABILITY TITLE RISK
2021-10-15 CVE-2021-3874 Path Traversal vulnerability in Bookstackapp Bookstack
bookstack is vulnerable to Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
network
low complexity
bookstackapp CWE-22
4.0
4.0
2021-09-06 CVE-2021-3767 Cross-site Scripting vulnerability in Bookstackapp Bookstack
bookstack is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') 		3.5
3.5
2021-09-06 CVE-2021-3768 Cross-site Scripting vulnerability in Bookstackapp Bookstack
bookstack is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') 		3.5
3.5
2021-09-02 CVE-2021-3758 Server-Side Request Forgery (SSRF) vulnerability in Bookstackapp Bookstack
bookstack is vulnerable to Server-Side Request Forgery (SSRF)
network
low complexity
bookstackapp CWE-918
4.0
4.0