CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

ATTACKERKB•added 2026/03/19 9:49 p.m.•1 views

CVE-2026-29072

Discourse is an open-source discussion platform. Prior to versions 2026.3.0-latest.1, 2026.2.1, and 2026.1.2, users who do not belong to the allowed policy creation groups can create functional policy acceptance widgets in posts under the right conditions. Versions 2026.3.0-latest.1, 2026.2.1, an...

8.2CVSS5.7AI score0.00018EPSS

Exploits0References2Affected Software1

Vulnrichment•added 2026/03/06 9:28 p.m.•0 views

CVE-2026-27142 URLs in meta content attribute actions are not escaped in html/template

Actions which insert URLs into the content attribute of HTML meta tags are not escaped. This can allow XSS if the meta tag also has an http-equiv attribute with the value "refresh". A new GODEBUG setting has been added, htmlmetacontenturlescape, which can be used to disable escaping URLs in actio...

5.7AI score0.00013EPSS

Exploits0References4

EUVD•added 2026/02/26 7:19 p.m.•3 views

EUVD-2026-8878

Discourse is an open source discussion platform. Versions prior to 2025.12.2, 2026.1.1, and 2026.2.0 have an IDOR Insecure Direct Object Reference in ReviewableNotesController. When enablecategorygroupmoderation is enabled, a user belonging to a category moderation group can create or delete thei...

4.3CVSS5.3AI score0.00054EPSS

OSV•added 2026/02/26 7:19 p.m.•1 views

CVE-2026-26973 Discourse doesn't scope reviewable notes to user-visible reviewables

4.3CVSS5.9AI score0.00054EPSS

Exploits0References3

ATTACKERKB•added 2026/02/26 7:19 p.m.•1 views

CVE-2026-26973

4.3CVSS5.7AI score0.00054EPSS

Exploits0References2Affected Software1

EUVD•added 2026/01/28 7:17 p.m.•2 views

EUVD-2025-206428

Discourse is an open source discussion platform. In versions prior to 3.5.4, 2025.11.2, 2025.12.1, and 2026.1.0, non-admin moderators with the moderatorschangepostownership setting enabled can change ownership of posts in private messages and restricted categories they cannot access, then export...

Cvelist•added 2026/01/28 7:17 p.m.•26 views

CVE-2025-68933 Discourse non-admin moderators can exfiltrate private content via post ownership transfer

6.9CVSS0.00051EPSS

OSV•added 2026/01/28 7:17 p.m.•4 views

CVE-2025-68933 Discourse non-admin moderators can exfiltrate private content via post ownership transfer

Vulnrichment•added 2026/01/28 7:17 p.m.•3 views

Exploits0References3

CVE-2025-68933 Discourse non-admin moderators can exfiltrate private content via post ownership transfer

ATTACKERKB•added 2026/01/28 7:17 p.m.•4 views

CVE-2025-68933

Exploits0References2Affected Software1

CVE•added 2026/01/28 7:17 p.m.•7 views

CVE-2025-68933

CVE-2025-68933 (Discourse) is a broken access control vulnerability affecting Discourse versions prior to 3.5.4, 2025.11.2, 2025.12.1, and 2026.1.0. Non-admin moderators with the moderators_change_post_ownership setting enabled can change ownership of posts in private messages and restricted cate...

Exploits0References1Affected Software1

Positive Technologies•added 2026/01/28 12:0 a.m.•3 views

PT-2026-5192

Name of the Vulnerable Software and Affected Versions Discourse versions prior to 3.5.4 Discourse versions prior to 2025.11.2 Discourse versions prior to 2025.12.1 Discourse versions prior to 2026.1.0 Description Discourse is an open source discussion platform. Non-admin moderators with the...

6.9CVSS5.2AI score0.00051EPSS

Exploits0References7

Snyk•added 2025/12/30 8:44 p.m.•2 views

Incorrect Authorization

Overview Affected versions of this package are vulnerable to Incorrect Authorization via the system.enableCrossNamespaceCommands when it is enabled on by default. An attacker can perform unauthorized actions in a different namespace by submitting workflow task commands that target namespaces othe...

6.3CVSS7AI score0.00021EPSS

Snyk•added 2025/12/30 8:41 p.m.•2 views

Incorrect Authorization

Overview Affected versions of this package are vulnerable to Incorrect Authorization when the frontend.enableExecuteMultiOperation is enabled. An attacker can circumvent namespace-specific validation and feature gates by setting the embedded StartWorkflowExecutionRequest's namespace field to a...

5.3CVSS6.8AI score0.00021EPSS

RedhatCVE•added 2025/05/22 11:38 p.m.•0 views

CVE-2022-41913

Discourse-calendar is a plugin for the Discourse messaging platform which adds the ability to create a dynamic calendar in the first post of a topic. Members of private groups or public groups with private members can be listed by users, who can create and edit post events. This vulnerability onl...

5.4CVSS5.6AI score0.00211EPSS

Positive Technologies•added 2025/04/15 12:0 a.m.•1 views

PT-2025-16395 · Nixos · Nixos

Name of the Vulnerable Software and Affected Versions: NixOS versions prior to 24.11 and 25.05 Description: The issue is a local privilege escalation affecting all NixOS users, where a local user can create a program to be executed by root during shutdown when systemd.shutdownRamfs.enable is...

8.8CVSS6.4AI score0.00113EPSS

Exploits0References9

RubySec•added 2024/09/16 12:0 a.m.•10 views

Decidim::Admin vulnerable to cross-site scripting (XSS) in the admin panel with QuillJS WYSWYG editor

Impact The WYSWYG editor QuillJS is subject to potential XSS attach in case the attacker manages to modify the HTML before being uploaded to the server. The attacker is able to change e.g. to if they know how to craft these requests themselves. Patches N/A Workarounds Review the user accounts tha...

5.4CVSS5.8AI score0.00631EPSS

Exploits0References1Affected Software1

OSV•added 2024/03/01 4:15 p.m.•2 views

CVE-2024-27138

UNSUPPORTED WHEN ASSIGNED Incorrect Authorization vulnerability in Apache Archiva. Apache Archiva has a setting to disable user registration, however this restriction can be bypassed. As Apache Archiva has been retired, we do not expect to release a version of Apache Archiva that fixes this issue...

7.5CVSS5.7AI score