CVE-2023-26045

🗓️ 24 Jul 2023 22:10:15Reported by GoogleType

osv🔗 osv.dev👁 10 Views

NodeBB forum software prior to 2.8.7 allows remote attackers to execute arbitrary code via a crafted payload due to a path traversal vulnerability in user export code path

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 8
Cvelist	CVE-2023-26045 NodeBB vulnerable to path traversal and code execution via prototype vulnerability	24 Jul 202321:08	–	cvelist
CVE	CVE-2023-26045	24 Jul 202322:15	–	cve
OSV	Path traversal and code execution via prototype vulnerability	25 Jul 202313:54	–	osv
Prion	Path traversal	24 Jul 202322:15	–	prion
Vulnrichment	CVE-2023-26045 NodeBB vulnerable to path traversal and code execution via prototype vulnerability	24 Jul 202321:08	–	vulnrichment
NVD	CVE-2023-26045	24 Jul 202322:15	–	nvd
OpenVAS	NodeBB 2.5.x < 2.8.7 Path Traversal Vulnerability	28 Sep 202300:00	–	openvas
Github Security Blog	Path traversal and code execution via prototype vulnerability	25 Jul 202313:54	–	github

Source	Link
github	www.github.com/NodeBB/NodeBB/security/advisories/GHSA-vh2g-6c4x-5hmp
security	www.security.netapp.com/advisory/ntap-20230831-0004/
github	www.github.com/NodeBB/NodeBB/commit/ec58700f6dff8e5b4af1544f6205ec362b593092

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

24 Jul 2023 22:15Current

7High risk

Vulners AI Score7

CVSS39.8 - 10

EPSS0.00304

SSVC