4 matches found
CVE-2022-31059
Discourse Calendar is a calendar plugin for Discourse, an open-source messaging app. Prior to version 1.0.1, parsing and rendering of Event names can be susceptible to cross-site scripting XSS attacks. This vulnerability only affects sites which have modified or disabled Discourse’s default Conte...
CVE-2022-31059
creationtimestamp| type| source ---|---|--- 2022-06-15 00:19:21+00:00| seen| https://t.me/cibsecurity/44461...
CVE-2022-31059 Discourse Calendar Event names susceptible to Cross-site Scripting
Discourse Calendar is a calendar plugin for Discourse, an open-source messaging app. Prior to version 1.0.1, parsing and rendering of Event names can be susceptible to cross-site scripting XSS attacks. This vulnerability only affects sites which have modified or disabled Discourse’s default Conte...
CVE-2022-31059
CVE-2022-31059 affects the Discourse Calendar plugin for Discourse. Before version 1.0.1, parsing and rendering of Event names can be vulnerable to cross-site scripting (XSS) attacks when a site has modified or disabled Discourse’s default Content Security Policy. The issue is patched in version ...