NVD Vulnerability Detail

Search Exploit, PoC

GitHub

Exploit DB

Packet Storm

NVD脆弱性検索トップ

->

NVD Vulnerability Detail

CVE-2024-29316

Summary	NodeBB 3.6.7 is vulnerable to Incorrect Access Control, e.g., a low-privileged attacker can access the restricted tabs for the Admin group via "isadmin":true.
Publication Date	March 29, 2024, 8:15 a.m.
Registration Date	March 29, 2024, 10 a.m.
Last Update	March 29, 2024, 3:15 p.m.

Related information, measures and tools

No	URL	refsource	タグ
1	https://nodebb.org/bounty/
2	https://medium.com/%40krityamkarma858041/broken-access-control-nodebb-v3-6-7-eebc59c24deb

Common Vulnerabilities List