Security Advisory

CVE-2023-2850

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-07-25 11:13:18

Last updated 2024-10-15 19:05:55

Assigner snyk

State PUBLISHED

Description

NodeBB is affected by a Cross-Site WebSocket Hijacking vulnerability due to missing validation of the request origin. Exploitation of this vulnerability allows certain user information to be extracted by attacker.

← Browse all CVEs View on cve.org ↗