5 matches found
CVE-2023-38498
Discourse is an open source discussion platform. Prior to version 3.0.6 of the stable branch and version 3.1.0.beta7 of the beta and tests-passed branches, a malicious user can prevent the defer queue from proceeding promptly on sites hosted in the same multisite installation. The issue is patche...
Discourse 3.1.x < 3.1.0.beta8 DoS Vulnerability
Discourse is prone to a denial of service DoS vulnerability via defer queue. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
CVE-2023-38498
Discourse (open source forum software) is affected by CVE-2023-38498. Prior to Discourse 3.0.6 (stable) and 3.1.0.beta7 (beta/tests-passed), a malicious user can cause the defer queue to not progress promptly on multisite installations within the same site. The vulnerability is fixed in 3.0.6 (st...
CVE-2023-38498 Discourse vulnerable to DoS via defer queue
Discourse is an open source discussion platform. Prior to version 3.0.6 of the stable branch and version 3.1.0.beta7 of the beta and tests-passed branches, a malicious user can prevent the defer queue from proceeding promptly on sites hosted in the same multisite installation. The issue is patche...
CVE-2023-38498 Discourse vulnerable to DoS via defer queue
Discourse is an open source discussion platform. Prior to version 3.0.6 of the stable branch and version 3.1.0.beta7 of the beta and tests-passed branches, a malicious user can prevent the defer queue from proceeding promptly on sites hosted in the same multisite installation. The issue is patche...