Lucene search
K

5 matches found

OpenVAS
OpenVAS
added 2022/11/03 12:0 a.m.15 views

Discourse < 2.8.10 Multiple Vulnerabilities

Discourse is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:discourse:discourse"; ifdescripti...

8.9CVSS6.1AI score0.00558EPSS
Exploits0References3
Circl
Circl
added 2022/11/02 7:19 p.m.5 views

CVE-2022-39378

creationtimestamp| type| source ---|---|--- 2022-11-02 19:19:55+00:00| seen| https://t.me/cibsecurity/52487...

5.3CVSS5.5AI score0.00482EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2022/11/02 12:0 a.m.5 views

CVE-2022-39378 Displaying user badges can leak topic titles to users that have no access to the topic

Discourse is a platform for community discussion. Under certain conditions, a user badge may have been awarded based on a user's activity in a topic with restricted access. Before this vulnerability was disclosed, the topic title of the topic associated with the user badge may be viewed by any...

5.3CVSS5.2AI score0.00482EPSS
Exploits0References1
CVE
CVE
added 2022/11/02 12:0 a.m.56 views

CVE-2022-39378

Discourse exposes topic titles of restricted topics to users awarded a user badge. The root cause is access control: a badge awarded based on activity in a restricted topic could allow viewing the topic title by users who should not have access. Public disclosure occurred before patching; multipl...

5.3CVSS5.1AI score0.00482EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2022/11/02 12:0 a.m.23 views

CVE-2022-39378 Displaying user badges can leak topic titles to users that have no access to the topic

Discourse is a platform for community discussion. Under certain conditions, a user badge may have been awarded based on a user's activity in a topic with restricted access. Before this vulnerability was disclosed, the topic title of the topic associated with the user badge may be viewed by any...

5.3CVSS5.8AI score0.00482EPSS
Exploits0References1
Rows per page
Query Builder