A remote code execution (RCE) vulnerability in the xmlrpc.php endpoint of NodeBB Inc NodeBB forum software prior to v1.18.6 allows attackers to execute arbitrary code via crafted XML-RPC requests.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2023-09-26T00:00:00
Updated: 2024-08-02T19:37:23.662Z
Reserved: 2023-09-18T00:00:00
Link: CVE-2023-43187
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2023-09-27T15:19:33.370
Modified: 2023-09-28T17:43:53.387
Link: CVE-2023-43187
Redhat
No data.