Lucene search
K

7 matches found

RedhatCVE
RedhatCVE
added 2025/05/31 7:50 p.m.20 views

CVE-2025-47288

Discourse Policy plugin gives the ability to confirm users have seen or done something. Prior to version 0.1.1, if there was a policy posted to a public topic that was tied to a private group then the group members could be shown to non-group members. This issue has been patched in version 0.1.1....

3.5CVSS6.7AI score0.00217EPSS
Exploits0References1
NVD
NVD
added 2025/05/29 8:15 p.m.10 views

CVE-2025-47288

Discourse Policy plugin gives the ability to confirm users have seen or done something. Prior to version 0.1.1, if there was a policy posted to a public topic that was tied to a private group then the group members could be shown to non-group members. This issue has been patched in version 0.1.1....

3.5CVSS0.00217EPSS
Exploits0References2
Circl
Circl
added 2025/05/29 8:4 p.m.16 views

CVE-2025-47288

creationtimestamp| type| source ---|---|--- 2025-05-29 20:04:57+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lqdjbkmksz52...

3.5CVSS7AI score0.00217EPSS
Exploits0References1
OSV
OSV
added 2025/05/29 7:25 p.m.7 views

CVE-2025-47288 Discourse Policy plugin private group members visible

Discourse Policy plugin gives the ability to confirm users have seen or done something. Prior to version 0.1.1, if there was a policy posted to a public topic that was tied to a private group then the group members could be shown to non-group members. This issue has been patched in version 0.1.1....

3.5CVSS6.6AI score0.00217EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/05/29 7:25 p.m.9 views

CVE-2025-47288 Discourse Policy plugin private group members visible

Discourse Policy plugin gives the ability to confirm users have seen or done something. Prior to version 0.1.1, if there was a policy posted to a public topic that was tied to a private group then the group members could be shown to non-group members. This issue has been patched in version 0.1.1....

3.5CVSS3.9AI score0.00217EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/05/29 7:25 p.m.19 views

CVE-2025-47288 Discourse Policy plugin private group members visible

Discourse Policy plugin gives the ability to confirm users have seen or done something. Prior to version 0.1.1, if there was a policy posted to a public topic that was tied to a private group then the group members could be shown to non-group members. This issue has been patched in version 0.1.1....

3.5CVSS0.00217EPSS
Exploits0References2
CVE
CVE
added 2025/05/29 7:25 p.m.46 views

CVE-2025-47288

Affected product: Discourse Policy plugin. Vulnerable: versions prior to 0.1.1. Root cause: a policy posted to a public topic that was tied to a private group could cause group members to be visible to non-group members. Impact: information disclosure of private-group membership (partial confiden...

3.5CVSS3.9AI score0.00217EPSS
Exploits0References2
Rows per page
Query Builder