Lucene search
China National Vulnerability DatabaseCNVD-2021-89161HistoryNov 16, 2021 - 12:00 a.m.
BookStack code issue vulnerability
2021-11-1600:00:00
China National Vulnerability Database
www.cnvd.org.cn
5
bookstack
open-source
vulnerability
php
laravel
controller.php
code issue
file type restrictions
attacker
arbitrary files
dangerous files
exploit
upload
EPSS
0.001
Percentile
29.8%
BookStack is an open-source platform for building wiki documents using PHP and Laravel from the BookStackApp (Bookstackapp) team.BookStack is vulnerable to a code issue that stems from a lack of file type restrictions in the software’s controller.php, which could be exploited by an attacker to vulnerability can be exploited to upload arbitrary and dangerous files.
Related
prion
prion
Unrestricted file upload
2021-11-13 10:15:00
osv
osv
bookstack is vulnerable to Unrestricted Upload of File with Dangerous Type
2021-11-15 23:17:37
CVE-2021-3915
2021-11-13 10:15:07
cvelist
cvelist
veracode
veracode
Unrestricted File Upload
2021-11-15 02:30:35
cve
cve
CVE-2021-3915
2021-11-13 10:15:07
huntr
huntr
in bookstackapp/bookstack
2021-10-28 14:57:53
github
github
bookstack is vulnerable to Unrestricted Upload of File with Dangerous Type
2021-11-15 23:17:37
nvd
nvd
CVE-2021-3915
2021-11-13 10:15:07