3 matches found
CVE-2020-24327
Server Side Request Forgery SSRF vulnerability exists in Discourse 2.3.2 and 2.6 via the email function. When writing an email in an editor, you can upload pictures of remote websites...
CVE-2020-24327
Server Side Request Forgery SSRF vulnerability exists in Discourse 2.3.2 and 2.6 via the email function. When writing an email in an editor, you can upload pictures of remote websites...
CVE-2020-24327
CVE-2020-24327 : Discourse SSRF vulnerability affecting version 2.3.2 and 2.6 via the email function. When composing email content, an attacker could upload images from remote websites through the editor, enabling server-side requests to arbitrary hosts. The connected documents confirm the affect...