3 matches found
CVE-2022-46150
Discourse is an open-source discussion platform. Prior to version 2.8.13 of the stable branch and version 2.9.0.beta14 of the beta and tests-passed branches, unauthorized users may learn of the existence of hidden tags and that they have been applied to topics that they have access to. This issue...
CVE-2022-46150 Discourse may allow exposure of hidden tags in the subject of notification emails
Discourse is an open-source discussion platform. Prior to version 2.8.13 of the stable branch and version 2.9.0.beta14 of the beta and tests-passed branches, unauthorized users may learn of the existence of hidden tags and that they have been applied to topics that they have access to. This issue...
CVE-2022-46150
Discourse prior to versions 2.8.13 (stable) and 2.9.0.beta14 (beta/tests-passed) contains an information disclosure vulnerability where unauthorized users can learn of hidden tags and that they have been applied to topics they access. The issue is fixed in 2.8.13 (stable) and 2.9.0.beta14 (beta/t...