Ecosyste.ms: Packages

An open API service providing package, version and dependency metadata of many open source software ecosystems and registries.

Top 6.4% on npmjs.org
Top 7.6% downloads on npmjs.org
Top 6.7% dependent repos on npmjs.org
Top 0.7% forks on npmjs.org
Top 1.0% docker downloads on npmjs.org

npmjs.org : nodebb

NodeBB Forum

Registry - Source - Homepage - JSON
purl: pkg:npm/nodebb
Keywords: community, forum, javascript, mongodb, node, nodebb, nodejs, postgresql, redis, socket-io, websockets
License: GPL-3.0
Latest release: over 7 years ago
First release: almost 10 years ago
Dependent packages: 1
Dependent repositories: 3
Downloads: 764 last month
Stars: 13,881 on GitHub
Forks: 2,714 on GitHub
Docker dependents: 3
Docker downloads: 396
Total Commits: 24457
Committers: 258
Average commits per author: 94.795
Development Distribution Score (DDS): 0.624
More commit stats: commits.ecosyste.ms
See more repository details: repos.ecosyste.ms
Last synced: 1 day ago

Critical

GSA_kwCzR0hTQS1wNGNjLXc1OTctNmNwbc4AAui1

Cryptographically weak PRNG in `utils.generateUUID`
Ecosystems: npm
Packages: nodebb
Source: github
Published: over 1 year ago

Critical

GSA_kwCzR0hTQS1oZjJtLWo5OHItNGZxd80YdA

API token verification can be bypassed in NodeBB
Ecosystems: npm
Packages: nodebb
Source: github
Published: over 2 years ago

Moderate

GSA_kwCzR0hTQS1wZmo3LTJxZnctdndnbc0Ydg

NodeBB vulnerable to path traversal in translator module
Ecosystems: npm
Packages: nodebb
Source: github
Published: over 2 years ago

Critical

GSA_kwCzR0hTQS12aDJnLTZjNHgtNWhtcM4AA04I

Path traversal and code execution via prototype vulnerability
Ecosystems: npm
Packages: nodebb
Source: github
Published: 10 months ago

High

GSA_kwCzR0hTQS14bWdnLWZ4OXAtcHJxNs4AAu1o

NodeBB account takeover via SSO plugins
Ecosystems: npm
Packages: nodebb
Source: github
Published: over 1 year ago

Moderate

GSA_kwCzR0hTQS01Z3d4LXdmOWctcjVteM4AAv2W

NodeBB vulnerable to Cross-Site Request Forgery
Ecosystems: npm
Packages: nodebb
Source: github
Published: over 1 year ago

Moderate

GSA_kwCzR0hTQS05ZzRmLTVycGctNDk0OM4AAYu7

NodeBB Cross-site Scripting Vulnerability in Markdown Processing
Ecosystems: npm
Packages: nodebb-plugin-markdown, nodebb
Source: github
Published: almost 2 years ago

Moderate

GSA_kwCzR0hTQS00cWN2LXFmMzgtNWozas4AA04i

Unintentional leakage of private information via cross-origin websocket session hijacking
Ecosystems: npm
Packages: nodebb
Source: github
Published: 10 months ago

Critical

GSA_kwCzR0hTQS13eDY5LXJ2ZzMteDdmY80YdQ

XSS via prototype pollution in NodeBB
Ecosystems: npm
Packages: nodebb
Source: github
Published: over 2 years ago

Critical

GSA_kwCzR0hTQS1yZjNnLXY4cDUtcDY3Nc4AAwJ4

NodeBB vulnerable to account takeover via prototype vulnerability
Ecosystems: npm
Packages: nodebb
Source: github
Published: over 1 year ago

Moderate

MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTcyZnYtcWdqNi0ydzJw

Cross-site Scripting in NodeBB
Ecosystems: npm
Packages: nodebb
Source: github
Published: about 5 years ago