4 matches found
CVE-2023-45816
Discourse is an open source platform for community discussion. Prior to version 3.1.3 of the stable branch and version 3.2.0.beta3 of the beta and tests-passed branches, there is an edge case where a bookmark reminder is sent and an unread notification is generated, but the underlying bookmarkabl...
CVE-2023-45816 Unread bookmark reminder notifications that the user cannot access can be seen
Discourse is an open source platform for community discussion. Prior to version 3.1.3 of the stable branch and version 3.2.0.beta3 of the beta and tests-passed branches, there is an edge case where a bookmark reminder is sent and an unread notification is generated, but the underlying bookmarkabl...
CVE-2023-45816
Discourse prior to version 3.1.3 (stable) and 3.2.0.beta3 (beta/tests-passed) contains a logic edge case where a bookmark reminder is sent and an unread notification is generated even when the user cannot access the underlying bookmarkable resource (post, topic, chat message). The issue is resolv...
CVE-2023-45816 Unread bookmark reminder notifications that the user cannot access can be seen
Discourse is an open source platform for community discussion. Prior to version 3.1.3 of the stable branch and version 3.2.0.beta3 of the beta and tests-passed branches, there is an edge case where a bookmark reminder is sent and an unread notification is generated, but the underlying bookmarkabl...