Cross-site Scripting in BookStack
Description
In BookStack greater than or equal to 0.18.0 and less than 0.29.2, there is an XSS vulnerability in comment creation. A user with permission to create comments could POST HTML directly to the system to be saved in a comment, which would then be executed/displayed to others users viewing the comment. Through this vulnerability custom JavaScript code could be injected and therefore ran on other user machines. This most impacts scenarios where not-trusted users are given permission to create comments. This has been fixed in 0.29.2.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
ssddanbrown/bookstackPackagist | >= 0.18.0, < 0.29.2 | 0.29.2 |
Affected products
2- Range: >= 0.18.0, < 0.29.2
Patches
Vulnerability mechanics
No source-code context for this CVE — mechanics is only generated when we can read the actual fix diff. Without that, the four sections (root cause, attack vector, affected code, fix) would be speculation rather than analysis.
References
7- jvn.jp/en/jp/JVN41035278/index.htmlghsathird-party-advisoryx_refsource_JVNWEB
- github.com/advisories/GHSA-5vf7-q87h-pg6wghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2020-11055ghsaADVISORY
- bookstackapp.com/blog/beta-release-v0-29-2ghsaWEB
- bookstackapp.com/blog/beta-release-v0-29-2/mitrex_refsource_MISC
- github.com/BookStackApp/BookStack/releases/tag/v0.29.2ghsax_refsource_MISCWEB
- github.com/BookStackApp/BookStack/security/advisories/GHSA-5vf7-q87h-pg6wghsax_refsource_CONFIRMWEB
News mentions
0No linked articles in our index yet.