Lucene search
+L

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 10:6 p.m.6 views

CVE-2022-39226

Discourse is an open source discussion platform. In versions prior to 2.8.9 on the stable branch and prior to 2.9.0.beta10 on the beta and tests-passed branches, a malicious actor can add large payloads of text into the Location and Website fields of a user profile, which causes issues for other...

4.3CVSS6.7AI score0.00805EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2022/09/29 8:5 p.m.5 views

CVE-2022-39226 Discourse user profile location and website fields were not sufficiently length-limited

Discourse is an open source discussion platform. In versions prior to 2.8.9 on the stable branch and prior to 2.9.0.beta10 on the beta and tests-passed branches, a malicious actor can add large payloads of text into the Location and Website fields of a user profile, which causes issues for other...

4.3CVSS4.6AI score0.00805EPSS
Exploits0References3
Cvelist
Cvelist
added 2022/09/29 8:5 p.m.47 views

CVE-2022-39226 Discourse user profile location and website fields were not sufficiently length-limited

Discourse is an open source discussion platform. In versions prior to 2.8.9 on the stable branch and prior to 2.9.0.beta10 on the beta and tests-passed branches, a malicious actor can add large payloads of text into the Location and Website fields of a user profile, which causes issues for other...

4.3CVSS4.9AI score0.00805EPSS
Exploits0References3
CVE
CVE
added 2022/09/29 8:5 p.m.71 views

CVE-2022-39226

CVE-2022-39226 affects Discourse (open source discussion platform). Versions before 2.8.9 (stable) and before 2.9.0.beta10 (beta/tests-passed) allow a malicious actor to insert large text payloads into the Location and Website fields of a user profile, causing issues for other users when loading ...

4.3CVSS4.5AI score0.00805EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder