Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 4:8 a.m.8 views

CVE-2023-38685

Discourse is an open source discussion platform. Prior to version 3.0.6 of the stable branch and version 3.1.0.beta7 of the beta and tests-passed branches, information about restricted-visibility topic tags could be obtained by unauthorized users. The issue is patched in version 3.0.6 of the stab...

4.3CVSS6.3AI score0.0039EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 2:36 a.m.12 views

CVE-2023-23624

Discourse is an open-source discussion platform. Prior to version 3.0.1 on the stable branch and version 3.1.0.beta2 on the beta and tests-passed branches, someone can use the excludetag param to filter out topics and deduce which ones were using a specific hidden tag. This affects any Discourse...

5.3CVSS6.5AI score0.0059EPSS
Exploits0References1
NVD
NVD
added 2024/07/03 8:15 p.m.45 views

CVE-2024-37157

Discourse is an open-source discussion platform. Prior to version 3.2.3 on the stable branch and version 3.3.0.beta4 on the beta and tests-passed branches, a malicious actor could get the FastImage library to redirect requests to an internal Discourse IP. This issue is patched in version 3.2.3 on...

6.4CVSS0.00348EPSS
Exploits0References3
NVD
NVD
added 2024/07/03 7:15 p.m.45 views

CVE-2024-35234

Discourse is an open-source discussion platform. Prior to version 3.2.3 on the stable branch and version 3.3.0.beta3 on the tests-passed branch, an attacker can execute arbitrary JavaScript on users’ browsers by posting a specific URL containing maliciously crafted meta tags. This issue only...

6.1CVSS0.00333EPSS
Exploits0References3
NVD
NVD
added 2023/02/08 8:15 p.m.33 views

CVE-2023-25167

Discourse is an open source discussion platform. In affected versions a malicious user can cause a regular expression denial of service using a carefully crafted git URL. This issue is patched in the latest stable, beta and tests-passed versions of Discourse. Users are advised to upgrade. There a...

6.5CVSS6.2AI score0.00567EPSS
Exploits0References2
Rows per page
Query Builder