CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

OSV•added 2025/04/18 6:15 p.m.•6 views

CVE-2025-29512

Cross-Site Scripting XSS vulnerability in NodeBB v4.0.4 and before allows remote attackers to store arbitrary code and potentially render the blacklist IP functionality unusable until content is removed via the database...

6.1CVSS6.1AI score0.00358EPSS

Exploits0References2

CVE•added 2025/04/18 12:0 a.m.•55 views

CVE-2025-29512

The CVE-2025-29512 entry concerns NodeBB before 4.0.5, where a Cross-Site Scripting (XSS) flaw in the application enables a remote attacker to store arbitrary code. The vulnerability affects v4.0.4 and earlier; impact includes potential disruption of the blacklist IP feature until content is remo...

6.1CVSS6.3AI score0.00358EPSS

Exploits0References2Affected Software1

Github Security Blog•added 2025/01/24 9:31 p.m.•6 views

NodeBB Cross-site scripting (XSS) vulnerability

A persistent cross-site scripting XSS vulnerability in NodeBB v3.11.0 allows remote attackers to store arbitrary code in the 'about me' section of their profile...

4.6CVSS5.9AI score0.0712EPSS

Exploits1References4Affected Software1

NVD•added 2025/01/24 8:15 p.m.•12 views

CVE-2024-57041

A persistent cross-site scripting XSS vulnerability in NodeBB v3.11.0 allows remote attackers to store arbitrary code in the 'about me' section of their profile...

4.6CVSS0.0712EPSS

Exploits1References3

OSV•added 2025/01/24 8:15 p.m.•4 views

CVE-2024-57041

A persistent cross-site scripting XSS vulnerability in NodeBB v3.11.0 allows remote attackers to store arbitrary code in the 'about me' section of their profile...

4.6CVSS6AI score0.0712EPSS

Exploits1References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by