NocoDB
Moderate fix1 remedy
cpe:2.3:a:nocodb:nocodb:*:*:*:*:*:*:*
Moderate fix1 remedy
- < 0.258.0
NocoDB Reflected Cross-Site Scripting Vulnerability in Password Reset Endpoint
Vulnerability
Patched
A reflected cross-site scripting vulnerability has been identified in NocoDB versions prior to 0.258.0. The issue arises in the password reset API endpoint, specifically '/api/v1/db/auth/password/reset/:tokenId'. The vulnerability is caused by the use of an insecure function in the client-side template engine EJS, which allows for the injection of malicious scripts that are executed in the user's browser.
Impact
Exploitation of this vulnerability allows for reflected cross-site scripting, where an attacker can inject malicious scripts that are executed in the context of the user's browser.
Reproduction
To reproduce this vulnerability, send a request to the password reset endpoint with a tokenId that includes a script injection payload. The injected script will be executed in the user's browser, demonstrating the cross-site scripting vulnerability.
Remediation
Users can upgrade to NocoDB version 0.258.0 or later to address this vulnerability.
Added: Jun 9, 2025, 7:46 PM
Updated: Jun 9, 2025, 7:46 PM
Vulnerability Rating
Custom Algorithm
spread
3.1impact
1.7exploitability
7.7remediation
7.7relevance
0.0threat
6.5urgency
2.9incentive
1.7Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.