nodebb Summary
Latest vulnerabilities published by nodebb
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
ActivityPub Author Spoofing in NodeBB by a Remote Actor
CVE-2026-58593NodebbNodebbπΎπ‘8.7HIGHArbitrary File Write Vulnerability in NodeBB Plugin Emoji by NodeBB
CVE-2021-47746NodebbNodebb Plugin EmojiπΎπ‘8.6HIGHSQL Injection Vulnerability in NodeBB by NodeBB Inc.
CVE-2025-50979NodeBB Inc.NodeBB8.6HIGHCross-Site Scripting Vulnerability in NodeBB by NodeBB
CVE-2025-29512NodeBBNodeBBCross-Site Scripting Vulnerability in NodeBB by NodeBB
CVE-2025-29513NodeBBNodeBBEPSS 12%Persistent XSS Vulnerability in NodeBB by NodeBB
CVE-2024-57041NodeBBNodeBBEPSS 26%4.6MEDIUMImproper Access Control in NodeBB 3.6.7 by NodeBB
CVE-2024-29316NodeBBNodeBB6.3MEDIUMNodeBB Pre-Authentication Denial-of-Service
CVE-2023-30591Nodebb, Inc.NodebbEPSS 53%7.5HIGHRemote Code Execution Vulnerability in NodeBB Forum Software by NodeBB Inc
CVE-2023-43187NodebbNodebbEPSS 45%9.8CRITICALCross-Site WebSocket Hijacking in NodeBB by NodeBB
CVE-2023-2850NodebbNodebb4.7MEDIUMNodeBB vulnerable to path traversal and code execution via prototype vulnerability
CVE-2023-26045NodebbNodebb10CRITICALAccount takeover via prototype vulnerability
CVE-2022-46164NodebbNodebbπΎπ‘EPSS 48%9.4CRITICALAccount takeover via SSO plugins in NodeBB
CVE-2022-36076NodebbNodebb8.8HIGHAccount takeover via cryptographically weak PRNG in NodeBB Forum
CVE-2022-36045NodebbNodebb9CRITICALPath traversal in translator module of NobeBB
CVE-2021-43788NodebbNodebbEPSS 25%5MEDIUMAPI token verification can be bypassed
CVE-2021-43786NodebbNodebb9.8CRITICALXSS via prototype pollution
CVE-2021-43787NodebbNodebb9CRITICALAccount takeover in NodeBB
CVE-2020-15149NodebbNodebb9.9CRITICALCross-Site Scripting Flaw in NodeBB by NodeBB
CVE-2015-9286NodebbNodebb6.1MEDIUMCross-Site Scripting Vulnerabilities in NodeBB by NodeBB
CVE-2015-3296NodebbNodebb6.1MEDIUM