4 matches found
CVE-2025-53532
giscus is a commenting system powered by GitHub Discussions. A bug in giscus' discussions creation API allowed an unauthorized user to create discussions on any repository where giscus is installed. This affects the server-side part of giscus, which is provided via http://giscus.app or your own...
CVE-2025-53532
CVE-2025-53532 affects giscus server-side API, allowing an unauthorized user to create discussions in any repository where giscus is installed. Impact is partial for integrity with no confidentiality/availability impact stated; CVSS v3.1 base score 5.3 (Network attack vector, Low attack complexit...
CVE-2025-53532 giscus allows unauthorized discussion creation
giscus is a commenting system powered by GitHub Discussions. A bug in giscus' discussions creation API allowed an unauthorized user to create discussions on any repository where giscus is installed. This affects the server-side part of giscus, which is provided via http://giscus.app or your own...
PT-2025-28222 · Giscus · Giscus
Name of the Vulnerable Software and Affected Versions: giscus affected versions not specified Description: A bug in giscus' discussions creation API allowed an unauthorized user to create discussions on any repository where giscus is installed. This affects the server-side part of giscus, which i...