Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 10:6 p.m.10 views

CVE-2022-39279

discourse-chat is a plugin for the Discourse message board which adds chat functionality. In versions prior to 0.9 some places render a chat channel's name and description in an unsafe way, allowing staff members to cause an cross site scripting XSS attack by inserting unsafe HTML into them...

5.4CVSS5.6AI score0.00369EPSS
Exploits0References1
Circl
Circl
added 2022/10/07 12:16 a.m.5 views

CVE-2022-39279

creationtimestamp| type| source ---|---|--- 2022-10-07 00:16:43+00:00| seen| https://t.me/cibsecurity/50935...

5.4CVSS5.5AI score0.00369EPSS
Exploits0References1
NVD
NVD
added 2022/10/06 8:15 p.m.40 views

CVE-2022-39279

discourse-chat is a plugin for the Discourse message board which adds chat functionality. In versions prior to 0.9 some places render a chat channel's name and description in an unsafe way, allowing staff members to cause an cross site scripting XSS attack by inserting unsafe HTML into them...

5.4CVSS0.00369EPSS
Exploits0References2
CVE
CVE
added 2022/10/06 12:0 a.m.52 views

CVE-2022-39279

The CVE concerns the discourse-chat plugin for Discourse, where versions prior to 0.9 render a chat channel name and description insecurely, enabling cross-site scripting by inserting unsafe HTML. The fixed version is 0.9; users are advised to upgrade. No additional exploit details or workaround ...

5.4CVSS4.8AI score0.00369EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2022/10/06 12:0 a.m.41 views

CVE-2022-39279 Discourse-chat plugin susceptible to XSS in channel name and description

discourse-chat is a plugin for the Discourse message board which adds chat functionality. In versions prior to 0.9 some places render a chat channel's name and description in an unsafe way, allowing staff members to cause an cross site scripting XSS attack by inserting unsafe HTML into them...

4.3CVSS5.5AI score0.00369EPSS
Exploits0References2
Rows per page
Query Builder