ssddanbrown/bookstack allows unrestricted file upload. Lack of checking uploaded file type and size allows an authenticated user with privilege to create role to upload any type of file, allowing upload of phishing page and get administrators credentials.