Discourse is an open source discussion platform. In affected versions a malicious user can cause a regular expression denial of service using a carefully crafted git URL. This issue is patched in the latest stable, beta and tests-passed versions of Discourse. Users are advised to upgrade. There are no known workarounds for this issue.
CPE | Name | Operator | Version |
---|---|---|---|
discourse | lt | 3.0.1 | |
discourse | eq | 3.1.0 beta1 |