CVE-2024-56197
CVE-2024-56197 affects Discourse: when the PM tags allowed for groups option is enabled, and a recipient belongs to a group listed in that option with the PM tagged, other users can read PM titles and metadata. The issue is described across multiple sources as an information-disclosure risk withi...