Description

NocoDB is software for building databases as spreadsheets. The API endpoint related to the password reset function is vulnerable to Reflected Cross-Site-Scripting. The endpoint /api/v1/db/auth/password/reset/:tokenId is vulnerable to Reflected Cross-Site-Scripting. The flaw occurs due to implementation of the client-side template engine ejs, specifically on file resetPassword.ts where the template is using the insecure function “<%-“, which is rendered by the function renderPasswordReset. This vulnerability is fixed in 0.258.0.

INFO

Published Date :

2025-03-06T18:52:10.371Z

Last Modified :

2025-03-06T19:19:39.656Z

Source :

GitHub_M
AFFECTED PRODUCTS

The following products are affected by CVE-2025-27506 vulnerability.

Vendors Products
Nocodb
  • Nocodb
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-27506.

URL Resource
https://github.com/nocodb/nocodb/blob/ba5a191b33259d984fc92df225f7d82ede2ddb56/packages/nocodb/src/modules/auth/auth.controller.ts#L251 cve-icon cve-icon
https://github.com/nocodb/nocodb/blob/ba5a191b33259d984fc92df225f7d82ede2ddb56/packages/nocodb/src/modules/auth/ui/auth/resetPassword.ts#L71 cve-icon cve-icon
https://github.com/nocodb/nocodb/commit/ea821edb133e621e26183ae65c8ff9ee5d6f2723 cve-icon cve-icon
https://github.com/nocodb/nocodb/security/advisories/GHSA-wf6c-hrhf-86cw cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact