Vulnerability Description
In BookStack greater than or equal to 0.18.0 and less than 0.29.2, there is an XSS vulnerability in comment creation. A user with permission to create comments could POST HTML directly to the system to be saved in a comment, which would then be executed/displayed to others users viewing the comment. Through this vulnerability custom JavaScript code could be injected and therefore ran on other user machines. This most impacts scenarios where not-trusted users are given permission to create comments. This has been fixed in 0.29.2.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Bookstackapp | Bookstack | >= 0.18.0, < 0.29.2 |
Related Weaknesses (CWE)
References
- http://jvn.jp/en/jp/JVN41035278/index.htmlThird Party Advisory
- https://bookstackapp.com/blog/beta-release-v0-29-2/Release NotesVendor Advisory
- https://github.com/BookStackApp/BookStack/releases/tag/v0.29.2Release Notes
- https://github.com/BookStackApp/BookStack/security/advisories/GHSA-5vf7-q87h-pg6Third Party Advisory
- http://jvn.jp/en/jp/JVN41035278/index.htmlThird Party Advisory
- https://bookstackapp.com/blog/beta-release-v0-29-2/Release NotesVendor Advisory
- https://github.com/BookStackApp/BookStack/releases/tag/v0.29.2Release Notes
- https://github.com/BookStackApp/BookStack/security/advisories/GHSA-5vf7-q87h-pg6Third Party Advisory
FAQ
What is CVE-2020-11055?
CVE-2020-11055 is a vulnerability with a CVSS score of 6.3 (MEDIUM). In BookStack greater than or equal to 0.18.0 and less than 0.29.2, there is an XSS vulnerability in comment creation. A user with permission to create comments could POST HTML directly to the system t...
How severe is CVE-2020-11055?
CVE-2020-11055 has been rated MEDIUM with a CVSS base score of 6.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2020-11055?
Check the references section above for vendor advisories and patch information. Affected products include: Bookstackapp Bookstack.