Exposición de NodeBB
Message boards27
score de exposición
171
sitios usan
0
en explotación
6
críticos
CVEs
11 resultadosCVE-2023-30591HIGHNodeBB Pre-Authentication Denial-of-ServiceEPSS 53.8%CVE-2022-46164CRITICALAccount takeover via prototype vulnerabilityEPSS 49.0%CVE-2021-43788MEDIUMPath traversal in translator module of NobeBBEPSS 25.8%CVE-2020-15149CRITICALAccount takeover in NodeBBEPSS 2.4%CVE-2021-43786CRITICALAPI token verification can be bypassedEPSS 2.3%CVE-2021-43787CRITICALXSS via prototype pollutionEPSS 1.3%CVE-2022-36045CRITICALAccount takeover via cryptographically weak PRNG in NodeBB ForumEPSS 1.0%CVE-2023-26045CRITICALNodeBB vulnerable to path traversal and code execution via prototype vulnerabilityEPSS 0.8%CVE-2022-36076HIGHAccount takeover via SSO plugins in NodeBBEPSS 0.4%CVE-2022-3978MEDIUMNodeBB abort cross-site request forgeryEPSS 0.3%CVE-2023-2850MEDIUMNodeBB is affected by a Cross-Site WebSocket Hijacking vulnerability due to missing validation of the request origin. Exploitation of this vEPSS 0.3%
¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →