Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2019-2063

Malware in sbrugna...

5.3CVSS5.3AI score0.00294EPSS
Exploits0References3
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2022-26893

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.00128EPSS
Exploits0References3
CNNVD
CNNVDadded 2025/07/29 12:0 a.m.2 views

Discourse 授权问题漏洞

Discourse is an open source community discussion platform from Discourse Open Source. The platform includes features such as communities, email, and chat rooms. An authorization issue vulnerability exists in Discourse versions prior to 3.4.7 and prior to 3.5.0.beta.8, which stems from an uncleare...

9.8CVSS6.4AI score0.00281EPSS
Exploits0References3
RedhatCVE
RedhatCVEadded 2025/05/22 10:52 p.m.5 views

CVE-2022-31060

Discourse is an open-source discussion platform. Prior to version 2.8.4 in the stable branch and version 2.9.0.beta5 in the beta and tests-passed branches, banner topic data is exposed on login-required sites. This issue is patched in version 2.8.4 in the stable branch and version 2.9.0.beta5 in...

5.3CVSS6.6AI score0.0037EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/22 10:31 p.m.6 views

CVE-2022-24850

Discourse is an open source platform for community discussion. A category's group permissions settings can be viewed by anyone that has access to the category. As a result, a normal user is able to see whether a group has read/write permissions in the category even though the information should...

5.3CVSS6.4AI score0.00187EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/22 9:21 p.m.4 views

CVE-2021-41095

Discourse is an open source discussion platform. There is a cross-site scripting XSS vulnerability in versions 2.7.7 and earlier of the stable branch, versions 2.8.0.beta6 and earlier of the beta branch, and versions 2.8.0.beta6 and earlier of the tests-passed branch. Rendering of some error...

6.1CVSS5AI score0.00224EPSS
Exploits0
CVE
CVEadded 2024/07/03 7:7 p.m.51 views

CVE-2024-36113

Discourse flaw: prior to 3.2.3 (stable), 3.3.0.beta3 (beta) and 3.3.0.beta4-dev (tests-passed), a rogue staff user could suspend other staff, blocking logins. Root cause: missing authorization checks for suspending admins/moderators. Fixes are in 3.2.3 (stable), 3.3.0.beta3 (beta), and 3.3.0.beta...

6.5CVSS5.2AI score0.00084EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichmentadded 2023/04/18 9:25 p.m.5 views

CVE-2023-30538 Stored Cross-site Scripting via improper sanitization of svg files in Discourse

Discourse is an open source platform for community discussion. Due to the improper sanitization of SVG files, an attacker can execute arbitrary JavaScript on the users’ browsers by uploading a crafted SVG file. This issue is patched in the latest stable and tests-passed versions of Discourse. Use...

5.4CVSS6.9AI score0.00309EPSS
Exploits0References1
Rows per page
Query Builder