CVE-2023-3374

Incomplete List of Disallowed Inputs vulnerability in Unisign Bookreen allows Privilege Escalation. This issue affects Bookreen: before 3.0.0.

critical 9.8 CVSS 3.1
Published: Sep 5, 2023
Modified: May 22, 2026
Vendor: Bookreen
Product: Bookreen

Description

Incomplete List of Disallowed Inputs vulnerability in Unisign Bookreen allows Privilege Escalation.

This issue affects Bookreen: before 3.0.0.

References

Related CVEs

CVE-2023-3375 high · 7.2
Unrestricted Upload of File with Dangerous Type vulnerability in Unisign Bookreen allows OS Command Injection. This issue affects Bookreen: before 3.0.0.