exploitDog

GHSA-fwg4-q55q-w62p

Опубликовано: 21 нояб. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 7.1

Описание

Book Stack version 23.10.2 allows filtering local files on the server. This is possible because the application is vulnerable to SSRF.

Book Stack version 23.10.2 allows filtering local files on the server. This is possible because the application is vulnerable to SSRF.

Ссылки

EPSS

Процентиль: 94%

0.13376

Средний

7.1 High

CVSS3

CVE ID

Дефекты

CWE-918

Связанные уязвимости

CVE-2023-6199

CVSS3: 6.5

nvd

около 2 лет назад

Book Stack version 23.10.2 allows filtering local files on the server. This is possible because the application is vulnerable to SSRF.

EPSS

Процентиль: 94%

0.13376

Средний

7.1 High

CVSS3

CVE ID

Дефекты

CWE-918