CVE-2020-26210
moderate-risk
Published 2020-11-03
In BookStack before version 0.30.4, a user with permissions to edit a page could add an attached link which would execute untrusted JavaScript code when clicked by a viewer of the page. Dangerous content may remain in the database after this update. If you think this could have been exploited the linked advisory provides a SQL query to test. As a workaround, page edit permissions could be limited to only those that are trusted until you can upgrade although this will not address existing exploitation of this vulnerability. The issue is fixed in version 0.30.4.
Do I need to act?
-
0.43% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
7
CVSS 7.7/10
High
NETWORK
/ HIGH complexity
Affected Products (1)
Affected Vendors
References (8)
Third Party Advisory
https://github.com/BookStackApp/BookStack/releases/tag/v0.30.4
Third Party Advisory
https://github.com/BookStackApp/BookStack/releases/tag/v0.30.4
30
/ 100
moderate-risk
Severity
23/34 · High
Exploitability
2/34 · Minimal
Exposure
5/34 · Minimal