Unrestricted Upload of File with Dangerous Type vulnerability in Unisign Bookreen allows OS Command Injection.
This issue affects Bookreen: before 3.0.0.
References
| Link | Resource |
|---|---|
| https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-23-0489 | |
| https://www.usom.gov.tr/bildirim/tr-23-0489 | Third Party Advisory |
| https://www.usom.gov.tr/bildirim/tr-23-0489 | Third Party Advisory |
Configurations
History
22 May 2026, 09:16
| Type | Values Removed | Values Added |
|---|---|---|
| References |
|
|
| Summary | (en) Unrestricted Upload of File with Dangerous Type vulnerability in Unisign Bookreen allows OS Command Injection. This issue affects Bookreen: before 3.0.0. |
21 Nov 2024, 08:17
| Type | Values Removed | Values Added |
|---|---|---|
| References | () https://www.usom.gov.tr/bildirim/tr-23-0489 - Third Party Advisory |
08 Sep 2023, 14:26
| Type | Values Removed | Values Added |
|---|---|---|
| CPE | cpe:2.3:a:bookreen:bookreen:*:*:*:*:*:*:*:* | |
| First Time |
Bookreen bookreen
Bookreen |
|
| References | (MISC) https://www.usom.gov.tr/bildirim/tr-23-0489 - Third Party Advisory | |
| CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.2 |
06 Sep 2023, 08:15
| Type | Values Removed | Values Added |
|---|---|---|
| Summary | Unrestricted Upload of File with Dangerous Type vulnerability in Unisign Bookreen allows OS Command Injection.This issue affects Bookreen: before 3.0.0. |
05 Sep 2023, 17:31
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2023-09-05 17:15
Updated : 2026-05-22 09:16
NVD link : CVE-2023-3375
Mitre link : CVE-2023-3375
CVE.ORG link : CVE-2023-3375
JSON object : View
Products Affected
bookreen
- bookreen
CWE
CWE-434
Unrestricted Upload of File with Dangerous Type