Home > Vulnerability Database > CVE-2023-4624

Mend.io Vulnerability Database

New vulnerability? Tell us about it!

CVE-2023-4624

Good to know:

Date: August 30, 2023

Server-Side Request Forgery (SSRF) in GitHub repository bookstackapp/bookstack prior to v23.08.

Language: PHP

Severity Score

2.4

Related Resources (4)

Url: https://nvd.nist.gov/vuln/detail/CVE-2023-4624

Url: https://huntr.dev/bounties/9ce5cef6-e546-44e7-addf-a2726fa4e60c

Url: https://github.com/bookstackapp/bookstack/commit/c324ad928dbdd54ce5b09eb0dabe60ef9de1ea38

Url: https://www.mend.io/vulnerability-database/CVE-2023-4624

Severity Score

2.4

Weakness Type (CWE)

Server-Side Request Forgery (SSRF)

CWE-918

Top Fix

Upgrade Version

Upgrade to version v23.08

CVSS v3.1

Base Score:	2.4
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	LOW
Privileges Required (PR):	HIGH
User Interaction (UI):	REQUIRED
Scope (S):	UNCHANGED
Confidentiality (C):	LOW
Integrity (I):	NONE
Availability (A):	NONE

Do you need more information?

Contact Us