← Back to CVE List

CVE-2015-3296

Published: 2017-09-21T14:29Z
Last Modified: 2024-11-21T02:29Z
Source: MITRE CVE List
License: MITRE-CVE-TOS
Multiple cross-site scripting (XSS) vulnerabilities in NodeBB before 0.7 allow remote attackers to inject arbitrary web script or HTML via vectors related to (1) javascript: or (2) data: URLs. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt