5 matches found
CVE-2022-36068
Discourse is an open source discussion platform. In versions prior to 2.8.9 on the stable branch and prior to 2.9.0.beta10 on the beta and tests-passed branches, a moderator can create new and edit existing themes by using the API when they should not be able to do so. The problem is patched in...
CVE-2022-36068
creationtimestamp| type| source ---|---|--- 2022-09-30 00:35:25+00:00| seen| https://t.me/cibsecurity/50747...
CVE-2022-36068
Discourse vulnerability CVE-2022-36068 affects versions prior to 2.8.9 (stable) and prior to 2.9.0.beta10 (beta/tests-passed). A moderator could create new themes and edit existing themes via the API when not allowed. Patch is available in 2.8.9 (stable) and 2.9.0.beta10 (beta/tests-passed). Ther...
CVE-2022-36068 Discourse moderators can edit themes via the API
Discourse is an open source discussion platform. In versions prior to 2.8.9 on the stable branch and prior to 2.9.0.beta10 on the beta and tests-passed branches, a moderator can create new and edit existing themes by using the API when they should not be able to do so. The problem is patched in...
CVE-2022-36068 Discourse moderators can edit themes via the API
Discourse is an open source discussion platform. In versions prior to 2.8.9 on the stable branch and prior to 2.9.0.beta10 on the beta and tests-passed branches, a moderator can create new and edit existing themes by using the API when they should not be able to do so. The problem is patched in...