ssddanbrown/bookstack is vulnerable to remote code execution (RCE). The attack exists because it allows untrusted users to upload PHP files to any area of applications by using image upload function and to execute the malicious PHP code on host system with PHP process permissions.