5 matches found
CVE-2023-38706
Discourse is an open-source discussion platform. Prior to version 3.1.1 of the stable branch and version 3.2.0.beta1 of the beta and tests-passed branches, a malicious user can create an unlimited number of drafts with very long draft keys which may end up exhausting the resources on the server...
Discourse < 3.1.1 Multiple DoS Vulnerabilities
Discourse is prone to multiple denial of service DoS vulnerabilities. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
CVE-2023-38706
Discourse is an open-source discussion platform. Prior to version 3.1.1 of the stable branch and version 3.2.0.beta1 of the beta and tests-passed branches, a malicious user can create an unlimited number of drafts with very long draft keys which may end up exhausting the resources on the server...
CVE-2023-38706
Discourse (open‑source forum software) contains a DoS vulnerability (CVE-2023-38706) where a malicious user can create an unlimited number of drafts with very long draft keys, exhausting server resources. Affected are stable branch < 3.1.1 and beta/tests-passed branches
Discourse 3.1.x - 3.1.0.beta8 Multiple DoS Vulnerabilities
Discourse is prone to multiple denial of service DoS vulnerabilities. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...