Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
3.5
CVSSv2

CVE-2020-26211

Published: 03/11/2020 Updated: 16/11/2020
CVSS v2 Base Score: 3.5 | Impact Score: 2.9 | Exploitability Score: 6.8
CVSS v3 Base Score: 8.7 | Impact Score: 5.8 | Exploitability Score: 2.3
VMScore: 312
Vector: AV:N/AC:M/Au:S/C:N/I:P/A:N
Subscribe to Bookstack

Vulnerability Summary

In BookStack before version 0.30.4, a user with permissions to edit a page could insert JavaScript code through the use of `javascript:` URIs within a link or form which would run, within the context of the current page, when clicked or submitted. Additionally, a user with permissions to edit a page could insert a particular meta tag which could be used to silently redirect users to a alternative location upon visit of a page. Dangerous content may remain in the database but will be removed before being displayed on a page. If you think this could have been exploited the linked advisory provides a SQL query to test. As a workaround without upgrading, page edit permissions could be limited to only those that are trusted until you can upgrade although this will not address existing exploitation of this vulnerability. The issue is fixed in BookStack version 0.30.4.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

bookstackapp bookstack

Github Repositories

https://github.com/PercussiveElbow/PercussiveElbow

Hi there πŸ‘‹ Pentester, I like Crystal/Ruby and write security tools of dubious quality πŸ’Ž Crystal SDKs I'm working on Shodan Crobat Docker πŸ“¦ Containerisation security tools, scripts etc Docker Escape Tool Docker Security Checklist πŸ’» Other security tools, unassorted scripts etc Dependensee CVE API InfoSec Whitepaper scraper πŸ“‘ Notes/resources XSS Resourc

References

CWE-79https://github.com/BookStackApp/BookStack/commit/bbd1384acbe7e52c21f89af69f2dc391c95dbf54https://github.com/BookStackApp/BookStack/releases/tag/v0.30.4https://github.com/BookStackApp/BookStack/security/advisories/GHSA-r2cf-8778-3jgphttps://www.bookstackapp.com/blog/beta-release-v0-30-4/https://nvd.nist.govhttps://github.com/PercussiveElbow/PercussiveElbow
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
deserializationCVE-2024-4040cross-site scriptingCVE-2023-25790CVE-2024-2961XML external entityCVE-2024-26926CVE-2024-32806CVE-2024-32711
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook