CVE-2023-4624: Server-Side Request Forgery (SSRF) in bookstackapp/bookstack
First published: Wed Aug 30 2023(Updated: )
Server-Side Request Forgery (SSRF) in GitHub repository bookstackapp/bookstack prior to v23.08.
Credit: security@huntr.dev security@huntr.dev
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Bookstackapp Bookstack | <23.08 | |
| <23.08 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2023-4624?
CVE-2023-4624 is a vulnerability known as Server-Side Request Forgery (SSRF) in the GitHub repository bookstackapp/bookstack prior to v23.08.
What is Server-Side Request Forgery (SSRF)?
Server-Side Request Forgery (SSRF) is a vulnerability that allows an attacker to manipulate the server into making malicious requests on behalf of the server itself.
What software versions are affected by CVE-2023-4624?
CVE-2023-4624 affects versions of the Bookstack software prior to v23.08.
What is the severity of CVE-2023-4624?
CVE-2023-4624 has a severity rating of low.
How can I fix CVE-2023-4624?
To fix CVE-2023-4624, make sure to update your Bookstack software to version 23.08 or newer.
- collector/nvd-index
- agent/references
- agent/author
- agent/type
- agent/weakness
- agent/title
- agent/severity
- agent/description
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/last-modified-date
- agent/softwarecombine
- agent/tags
- agent/event
- vendor/bookstackapp
- canonical/bookstackapp bookstack