Lucene search
K

5 matches found

OpenVAS
OpenVAS
added 2023/09/28 12:0 a.m.17 views

NodeBB 2.x < 2.8.13, 3.x < 3.1.3 Information Disclosure Vulnerability

NodeBB is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:nodebb:nodebb";...

4.7CVSS4.5AI score0.00278EPSS
Exploits0References1
Circl
Circl
added 2023/07/25 4:26 p.m.5 views

CVE-2023-2850

creationtimestamp| type| source ---|---|--- 2023-07-25 16:26:48+00:00| seen| https://t.me/cibsecurity/67231...

4.7CVSS4.6AI score0.00278EPSS
Exploits0References1
OSV
OSV
added 2023/07/25 11:13 a.m.20 views

CVE-2023-2850

NodeBB is affected by a Cross-Site WebSocket Hijacking vulnerability due to missing validation of the request origin. Exploitation of this vulnerability allows certain user information to be extracted by attacker...

4.7CVSS6.7AI score0.00278EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2023/07/25 11:13 a.m.17 views

CVE-2023-2850

NodeBB is affected by a Cross-Site WebSocket Hijacking vulnerability due to missing validation of the request origin. Exploitation of this vulnerability allows certain user information to be extracted by attacker...

4.7CVSS6.4AI score0.00278EPSS
Exploits0References3
CVE
CVE
added 2023/07/25 11:13 a.m.2513 views

CVE-2023-2850

CVE-2023-2850 affects NodeBB and is a Cross-Site WebSocket Hijacking vulnerability caused by missing validation of the request origin. The issue can lead to leakage of certain user information. Publicly documented details identify affected NodeBB lines as NodeBB 2.x before 2.8.13 and 3.x before 3...

4.7CVSS4.4AI score0.00278EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder