cbcvebase.
CVE-2025-27506
published 2025-03-06

CVE-2025-27506: NocoDB is software for building databases as spreadsheets. The API endpoint related to the password reset function is vulnerable to Reflected…

PriorityP338medium6.1CVSS 3.1
AVNACLPRNUIRSCCLILAN
EXPLOIT
EPSS
0.68%
47.9th percentile
NocoDB is software for building databases as spreadsheets. The API endpoint related to the password reset function is vulnerable to Reflected Cross-Site-Scripting. The endpoint /api/v1/db/auth/password/reset/:tokenId is vulnerable to Reflected Cross-Site-Scripting. The flaw occurs due to implementation of the client-side template engine ejs, specifically on file resetPassword.ts where the template is using the insecure function “<%-“, which is rendered by the function renderPasswordReset. This vulnerability is fixed in 0.258.0.

Affected

6 ranges
VendorProductVersion rangeFixed in
msrcclamav-0.103.2-1.cm1.aarch64.rpm_on_cbl_mariner_1.0_arm
msrcclamav-0.103.2-1.cm1.x86_64.rpm_on_cbl_mariner_1.0_x64
msrcclamav-debuginfo-0.103.2-1.cm1.aarch64.rpm_on_cbl_mariner_1.0_arm
msrcclamav-debuginfo-0.103.2-1.cm1.x86_64.rpm_on_cbl_mariner_1.0_x64
nocodbnocodb< 0.258.00.258.0
nocodbnocodb>= 0 < 0.258.00.258.0

CVSS provenance

nvdv3.16.1MEDIUMCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
vendor_msrc5.5MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.