CVE-2023-26045

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2023-26045

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-26045.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2023-26045

Aliases

GHSA-vh2g-6c4x-5hmp

Published

2023-07-24T21:08:47Z

Modified

2025-11-04T20:07:57.445365Z

Severity

10.0 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H CVSS Calculator

Summary

NodeBB vulnerable to path traversal and code execution via prototype vulnerability

Details

NodeBB is Node.js based forum software. Starting in version 2.5.0 and prior to version 2.8.7, due to the use of the object destructuring assignment syntax in the user export code path, combined with a path traversal vulnerability, a specially crafted payload could invoke the user export logic to arbitrarily execute javascript files on the local disk. This issue is patched in version 2.8.7. As a workaround, site maintainers can cherry pick the fix into their codebase to patch the exploit.

Database specific

{
    "cwe_ids": [
        "CWE-22"
    ]
}

References

Affected packages

Git / github.com/nodebb/nodebb

Affected ranges

Type: GIT
Repo: https://github.com/nodebb/nodebb
Events: Introduced

c3e19005f6b18bfee734c9c17be3e7377d3e4208

Fixed

6976925943ff12eedf34c543623872c4ed143e9e

Affected versions

v2.*

v2.5.0

v2.5.1

v2.5.2

v2.5.3

v2.5.4

v2.5.5

v2.5.6

v2.5.7

v2.5.8

v2.6.0

v2.6.1

v2.7.0

v2.8.0

v2.8.1

v2.8.2

v2.8.3

v2.8.4

v2.8.5

v2.8.6