3 matches found
CVE-2023-30611
Discourse-reactions is a plugin that allows user to add their reactions to the post in the Discourse messaging platform. In affected versions data about what reactions were performed on a post in a private topic could be leaked. This issue has been addressed in version 0.3. Users are advised to...
CVE-2023-30611
Discourse-reactions plugin vulnerability (CVE-2023-30611) allows leakage of reaction metadata from posts in private topics. Affected: Discourse with discourse-reactions prior to 0.3. Root cause described as information disclosure through reaction data exposure in private topics. Impact is confide...
CVE-2023-30611 Reaction metadata exposed in private topics in Discourse-reactions
Discourse-reactions is a plugin that allows user to add their reactions to the post in the Discourse messaging platform. In affected versions data about what reactions were performed on a post in a private topic could be leaked. This issue has been addressed in version 0.3. Users are advised to...