3 matches found
Discourse < 3.0.6 Multiple Vulnerabilities
Discourse is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:discourse:discourse"; ifdescripti...
CVE-2023-37906 Discourse vulnerable to DoS via post edit reason
Discourse is an open source discussion platform. Prior to version 3.0.6 of the stable branch and version 3.1.0.beta7 of the beta and tests-passed branches, a malicious user can edit a post in a topic and cause a DoS with a carefully crafted edit reason. The issue is patched in version 3.0.6 of th...
CVE-2023-37906
CVE-2023-37906 affects the Discourse open source platform. Prior to version 3.0.6 (stable) and 3.1.0.beta7 (beta/tests-passed) , a malicious user could edit a post in a topic with a crafted edit reason to trigger a DoS. The vulnerability is patched in 3.0.6 (stable) and 3.1.0.beta7 (beta/tests-pa...