CVE-2021-43788 — NodeBB vulnerable to path traversal in translator module

Description

### Impact Prior to v1.18.5, a path traversal vulnerability was present that allowed users to access JSON files outside of the expected `languages/` directory. ### Patches The vulnerability has been patched as of v1.18.5. ### Workarounds Cherry-pick commit hash `c8b2fc46dc698db687379106b3f01c71b80f495f` to receive this patch in lieu of a full upgrade. ### For more information If you have any questions or comments about this advisory: * Email us at [security@nodebb.org](mailto:security@nodebb.org)

How to fix CVE-2021-43788

To remediate CVE-2021-43788, upgrade the affected package to a fixed version below.

—upgrade to 1.18.5 or later

Is CVE-2021-43788 being exploited?

Low — EPSS is 2.5%, meaning exploitation activity has not been observed at scale.

Affected packages (1)

>= 1.0.4, < 1.18.5

CVSS scores

Source	Version	Severity	Vector
osv	CVSS 3.1	MEDIUM5.0	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N

References (6)

ADVISORYnvd.nist.gov/vuln/detail/CVE-2021-43788
PATCHgithub.com/NodeBB/NodeBB
WEBblog.sonarsource.com/nodebb-remote-code-execution-with-one-shot
WEBgithub.com/NodeBB/NodeBB/commit/c8b2fc46dc698db687379106b3f01c71b80f495f