CVE-2021-43787
9
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H
Summary
Nodebb is an open source Node.js based forum software. In affected versions a prototype pollution vulnerability in the uploader module allowed a malicious user to inject arbitrary data (i.e. javascript) into the DOM, theoretically allowing for an account takeover when used in conjunction with a path traversal vulnerability disclosed at the same time as this report. The vulnerability has been patched as of v1.18.5. Users are advised to upgrade as soon as possible.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| NodeBB | NodeBB | >= 1.15.5, < 1.18.5 | affected |
Weaknesses
- CWE-79: CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
- CWE-1321: CWE-1321: Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')
ADP Enrichment
CVE Program Container
Additional References
- https://github.com/NodeBB/NodeBB/security/advisories/GHSA-wx69-rvg3-x7fc
- https://github.com/NodeBB/NodeBB/commit/1783f918bc19568f421473824461ff2ed7755e4c
- https://github.com/NodeBB/NodeBB/releases/tag/v1.18.5
- https://blog.sonarsource.com/nodebb-remote-code-execution-with-one-shot/
References
- https://github.com/NodeBB/NodeBB/security/advisories/GHSA-wx69-rvg3-x7fc
- https://github.com/NodeBB/NodeBB/commit/1783f918bc19568f421473824461ff2ed7755e4c
- https://github.com/NodeBB/NodeBB/releases/tag/v1.18.5
- https://blog.sonarsource.com/nodebb-remote-code-execution-with-one-shot/
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.