Book&Quill vulnerability allows attackers with modified clients to add arbitrary enchantments

An attacker who has altered his/her client to send additional NBT data when signing a book via the MC|BSign extension can specify arbitary enchantments and other data for the signed book without verification or authentication.