🕵️ CVE-2020-5256 | BookStack up to 0.25.4 Image Upload neutralization of directives (GHSA-g9rq-x4fj-f5hx)
Nachrichtenbereich: 🕵️ Sicherheitslücken
🔗 Quelle: vuldb.com
A vulnerability was found in BookStack up to 0.25.4. It has been classified as critical. This affects an unknown part of the component Image Upload. The manipulation leads to improper neutralization of directives in dynamically evaluated code ('eval injection'). This vulnerability is uniquely identified as CVE-2020-5256. It is possible to initiate the attack remotely. There is no exploit available. ...