Lucene search
+L

5 matches found

redhatcve
redhatcve
added 2025/05/22 10:24 p.m.7 views

CVE-2022-21678

Discourse is an open source discussion platform. Prior to version 2.8.0.beta11 in the tests-passed branch, version 2.8.0.beta11 in the beta branch, and version 2.7.13 in the stable branch, the bios of users who made their profiles private were still visible in the tags on their users' pages. The...

4.3CVSS6.7AI score0.00908EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2022/01/13 5:30 p.m.7 views

CVE-2022-21678 User's bio visible even if profile is restricted in Discourse

Discourse is an open source discussion platform. Prior to version 2.8.0.beta11 in the tests-passed branch, version 2.8.0.beta11 in the beta branch, and version 2.7.13 in the stable branch, the bios of users who made their profiles private were still visible in the tags on their users' pages. The...

4.3CVSS7.1AI score0.00908EPSS
Exploits0References3
cve
cve
added 2022/01/13 5:30 p.m.97 views

CVE-2022-21678

Discourse suffers an information disclosure vulnerability: before specific patch levels, bios (or profile bios) of users with private profiles were exposed in the page meta data, exposing private user information. Affected software: Discourse. Affected versions include prior to 2.8.0.beta11 in th...

4.3CVSS4.5AI score0.00908EPSS
Exploits0References3Affected Software1
cvelist
cvelist
added 2022/01/13 5:30 p.m.33 views

CVE-2022-21678 User's bio visible even if profile is restricted in Discourse

Discourse is an open source discussion platform. Prior to version 2.8.0.beta11 in the tests-passed branch, version 2.8.0.beta11 in the beta branch, and version 2.7.13 in the stable branch, the bios of users who made their profiles private were still visible in the tags on their users' pages. The...

4.3CVSS6AI score0.00908EPSS
Exploits0References3
openvas
openvas
added 2022/01/11 12:0 a.m.22 views

Discourse < 2.7.13 Multiple Vulnerabilities

Discourse is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:discourse:discourse"; ifdescripti...

8.8CVSS5.3AI score0.01174EPSS
Exploits0References4
Rows per page
Query Builder