Lucene search
+L

4 matches found

NVD
NVD
added 2021/08/26 8:15 p.m.26 views

CVE-2021-39161

Discourse is an open source platform for community discussion. In affected versions category names can be used for Cross-site scriptingXSS attacks. This is mitigated by Discourse's default Content Security Policy and this vulnerability only affects sites which have modified or disabled or changed...

5.4CVSS0.00413EPSS
Exploits0References1
Cvelist
Cvelist
added 2021/08/26 8:0 p.m.26 views

CVE-2021-39161 Cross-site scripting via category name in Discourse

Discourse is an open source platform for community discussion. In affected versions category names can be used for Cross-site scriptingXSS attacks. This is mitigated by Discourse's default Content Security Policy and this vulnerability only affects sites which have modified or disabled or changed...

4.4CVSS5.6AI score0.00413EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2021/08/19 12:0 a.m.23 views

Discourse 2.7.8 Security Update

Discourse is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:discourse:discourse"; ifdescripti...

7.5CVSS5.4AI score0.00844EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2021/07/29 12:0 a.m.20 views

Discourse 2.8.0.beta4 Security Update

A new Discourse update includes two security fixes. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:discourse:discourse";...

5.4CVSS5.2AI score0.00888EPSS
Exploits0References3
Rows per page
Query Builder