Vulnerability Database

296,137

Total vulnerabilities in the database

CVE-2025-29513

Cross-Site Scripting (XSS) vulnerability in NodeBB v4.0.4 and before allows remote attackers to store arbitrary code in the admin API Access token generator.

No technical information available.

No CWE or OWASP classifications available.

Software From Fixed in
nodebb / nodebb - 4.0.4.x