Moderate severityNVD Advisory· Published Jan 24, 2025· Updated Feb 6, 2025
CVE-2024-57041
CVE-2024-57041
Description
A persistent cross-site scripting (XSS) vulnerability in NodeBB v3.11.0 allows remote attackers to store arbitrary code in the 'about me' section of their profile.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
nodebbnpm | < 3.11.1 | 3.11.1 |
Affected products
2Patches
Vulnerability mechanics
References
6News mentions
0No linked articles in our index yet.