Yassine Aboukir

**Name of the Vulnerable Software and Affected Versions** BookStack versions prior to 0.30.4 **Description** The issue allows a user with page edit permissions to add an attached link that executes untrusted JavaScript code when clicked by a viewer. This could lead to the execution of malicious code. Dangerous content may remain in the database even after updating. **Recommendations** For versions prior to 0.30.4, upgrade to version 0.30.4 to fix the issue. As a temporary workaround, consider limiting page edit permissions to only trusted users, although this will not address existing exploitation of the issue. If you suspect exploitation, use the provided SQL query to test for dangerous content in the database.

**Name of the Vulnerable Software and Affected Versions** Redmine versions prior to 2.6.7 Redmine versions 3.0.x prior to 3.0.5 Redmine versions 3.1.x prior to 3.1.1 **Description** The issue allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a crafted `back url` parameter. This can be achieved by manipulating the `back url` parameter in the `valid back url` function. **Recommendations** For versions prior to 2.6.7, update to version 2.6.7 or later. For versions 3.0.x prior to 3.0.5, update to version 3.0.5 or later. For versions 3.1.x prior to 3.1.1, update to version 3.1.1 or later.