BookStack v25.12.9 has been released.
Uncategorized
1
Posts
1
Posters
0
Views
-
BookStack v25.12.9 has been released.
This is a security release to address a vulnerability where style code in page content could be used to manipulate the page beyond the expected content area in some revision views, opening up risk of potential phishing and/or tracking by bad page editors.
We advise that you update your instance if you allow untrusted users to create or edit pages.
BookStack Security Release v25.12.9 · BookStack
BookStack v25.12.9 has been released. This is a security release to address a vulnerability where style code in page content could be used to manipulate the page beyond the expected content area in some revision views, opening up risk of potential phishing and/or tracking by bad page editors.
BookStack (www.bookstackapp.com)
-
R relay@relay.infosec.exchange shared this topic
