Exploiting SSRF Vulnerability in Book Stack Version 23.10.2: Filtering Local Files on the Server

Exploiting SSRF Vulnerability in Book Stack Version 23.10.2: Filtering Local Files on the Server

CVE-2023-6199 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Book Stack version 23.10.2 allows filtering local files on the server. This is possible because the application is vulnerable to SSRF.

Learn more about our Cis Benchmark Audit For Server Software.