Lucene search
K

4 matches found

OpenVAS
OpenVAS
added 2022/10/04 12:0 a.m.16 views

Discourse 2.9.0.beta5 - 2.9.0.beta9 DoS Vulnerability

Discourse is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:discourse:discourse"...

6.5CVSS4.8AI score0.00951EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/09/29 8:15 p.m.36 views

CVE-2022-39232 Discourse vulnerable to incomplete quote causing a topic to crash in the browser

Discourse is an open source discussion platform. Starting with version 2.9.0.beta5 and prior to version 2.9.0.beta10, an incomplete quote can generate a JavaScript error which will crash the current page in the browser in some cases. Version 2.9.0.beta10 added a fix and tests to ensure incomplete...

6.5CVSS6.6AI score0.00951EPSS
Exploits0References3
CVE
CVE
added 2022/09/29 8:15 p.m.60 views

CVE-2022-39232

CVE-2022-39232 affects the Discourse open-source discussion platform. The issue occurs in Discourse versions 2.9.0.beta5 through 2.9.0.beta9 where an incomplete quote can generate a JavaScript error that crashes the current browser page. A fix was introduced in 2.9.0.beta10, with tests to ensure ...

6.5CVSS5.3AI score0.00951EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2022/09/29 8:15 p.m.6 views

CVE-2022-39232 Discourse vulnerable to incomplete quote causing a topic to crash in the browser

Discourse is an open source discussion platform. Starting with version 2.9.0.beta5 and prior to version 2.9.0.beta10, an incomplete quote can generate a JavaScript error which will crash the current page in the browser in some cases. Version 2.9.0.beta10 added a fix and tests to ensure incomplete...

6.5CVSS6.5AI score0.00951EPSS
Exploits0References3
Rows per page
Query Builder