2 matches found
CVE-2026-45788
Discourse is an open-source discussion platform. Prior to 2026.6.0, 2026.5.1, 2026.4.2, and 2026.1.5, secure uploads could be exposed by pullhotlinkedimages when an attacker knew the secured upload URL and the secureuploads site setting was enabled. This issue is fixed in versions 2026.6.0,...
CVE-2026-45788
CVE-2026-45788 affects the open-source forum software Discourse . The issue: prior to 2026.6.0 , and also before 2026.5.1 , 2026.4.2 , and 2026.1.5 , secure uploads could be exposed via pull_hotlinked_images when an attacker knew the secured upload URL and the secure_uploads site setting was enab...