Exploit for #VU46357 Improper Privilege Management in NodeBB
Vulnerability identifier: #VU46357
Vulnerability risk: Medium
CVSSv3.1: 4.9 [CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C]
CVE-ID:
CWE-ID:
CWE-269
Exploitation vector: Network
Exploits in database: 1
- June 17, 2021
- NodeBB Forum 1.12.2-1.14.2 - Account Takeover [Exploit-DB]
Impact: Information disclosure and data manipulation
Vulnerable software:
NodeBB
Web applications /
Forum & blogging software
Vendor: NodeBB
