6104 matches found
CVE-2026-32620
Summary: CVE-2026-32620 affects Discourse. From 2026.1.0-latest up to before 2026.1.3, 2026.2.0-latest up to before 2026.2.2, and 2026.3.0-latest up to before 2026.3.0, non-staff users could access read receipt metadata for staff-only posts they were not supposed to see. No post content was expos...
EUVD-2026-17559
Discourse is an open-source discussion platform. From versions 2026.1.0-latest to before 2026.1.3, 2026.2.0-latest to before 2026.2.2, and 2026.3.0-latest to before 2026.3.0, non-staff users could access read receipt information for staff-only posts they weren't supposed to see. No post content w...
CVE-2026-32620 Discourse: Missing post-level authorization allows whisper metadata disclosure
Discourse is an open-source discussion platform. From versions 2026.1.0-latest to before 2026.1.3, 2026.2.0-latest to before 2026.2.2, and 2026.3.0-latest to before 2026.3.0, non-staff users could access read receipt information for staff-only posts they weren't supposed to see. No post content w...
CVE-2026-32620
Discourse is an open-source discussion platform. From versions 2026.1.0-latest to before 2026.1.3, 2026.2.0-latest to before 2026.2.2, and 2026.3.0-latest to before 2026.3.0, non-staff users could access read receipt information for staff-only posts they weren't supposed to see. No post content w...
CVE-2026-24154
creationtimestamp| type| source ---|---|--- 2026-03-31 17:28:52+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3miepain7xw2r 2026-03-31 17:29:01+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3miepasmjts2r 2026-03-31 17:34:33+00:00| seen|...
CVE-2026-21632
creationtimestamp| type| source ---|---|--- 2026-03-31 17:00:00+00:00| seen| https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0384/ 2026-04-01 12:03:23+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mignjhtn7k2z 2026-04-01 12:20:17+00:00| seen|...
CVE-2026-5286
creationtimestamp| type| source ---|---|--- 2026-03-31 17:00:00+00:00| seen| https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0385/ 2026-04-01 06:00:29+00:00| seen| https://infosec.exchange/users/offseq/statuses/116327922216539438 2026-04-01 06:00:29+00:00| seen|...
CVE-2026-21630
creationtimestamp| type| source ---|---|--- 2026-03-31 17:00:00+00:00| seen| https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0384/ 2026-04-01 12:20:17+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3migohoedj52z 2026-04-01 12:23:25+00:00| seen|...
CVE-2025-15618
creationtimestamp| type| source ---|---|--- 2026-03-31 16:32:59+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3miem4mcox32r 2026-03-31 16:33:18+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3miem562nc42m 2026-03-31 17:24:25+00:00|...
CVE-2026-34240
creationtimestamp| type| source ---|---|--- 2026-03-31 16:28:32+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mielun7v3j2r 2026-03-31 16:28:33+00:00| seen| https://bsky.app/profile/potato.software/post/3mieluoldg22e 2026-03-31 16:29:03+00:00| seen|...
CVE-2026-0596
creationtimestamp| type| source ---|---|--- 2026-03-31 16:24:43+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mielnttg7r2z 2026-03-31 16:31:07+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mielzbemc32s 2026-03-31 17:24:40+00:00| published-proof-of-concept|...
CVE-2026-34209
creationtimestamp| type| source ---|---|--- 2026-03-31 15:32:26+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mieiqd2y2c25 2026-03-31 15:33:19+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mieirvxorm2p 2026-04-03 17:00:15+00:00| seen|...
CVE-2026-34955
creationtimestamp| type| source ---|---|--- 2026-03-31 15:25:42+00:00| published-proof-of-concept| https://github.com/MervinPraison/PraisonAI/security/advisories/GHSA-r4f2-3m54-pp7q 2026-04-04 01:19:10+00:00| published-proof-of-concept| Telegram/7aT9UpYbZ02LD1lZLti1mg9cdxIpZxAoIiq3Sp7jGujjzO4...
CVE-2026-32916
creationtimestamp| type| source ---|---|--- 2026-03-31 12:29:03+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mie6ige7hm2p 2026-03-31 13:19:01+00:00| seen| Telegram/jSTFa01DEWFRhQKHtf4fP3tqxxyDE1Jfuh4yALHVDvczs38 2026-03-31 13:37:29+00:00| seen|...
CVE-2026-32982
creationtimestamp| type| source ---|---|--- 2026-03-31 12:28:57+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mie6iajyix2s 2026-03-31 13:19:26+00:00| published-proof-of-concept| Telegram/bc0dtnMAVwN1UZgcMoKZPcvjFdUYL45B0PcMRVU30Ps4cSo 2026-03-31 14:06:48+00:00| seen|...
CVE-2026-34506
creationtimestamp| type| source ---|---|--- 2026-03-31 12:25:37+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mie6cc6f472s 2026-03-31 12:26:19+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mie6dkiv7l27 2026-03-31 12:27:18+00:00| seen|...
CVE-2026-32988
creationtimestamp| type| source ---|---|--- 2026-03-31 12:25:24+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mie6bvezbo2h 2026-03-31 12:26:05+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mie6d4wcua27 2026-03-31 13:15:39+00:00| seen|...
CVE-2026-4317
creationtimestamp| type| source ---|---|--- 2026-03-31 10:30:31+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3midxuhnjb42i 2026-03-31 10:58:42+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3midzgvh7s62o 2026-03-31 11:17:48+00:00| seen|...
CVE-2026-5176
creationtimestamp| type| source ---|---|--- 2026-03-31 03:17:25+00:00| seen| Telegram/v8IgW6gHpWVIushUEONWR1rBf1AadyMpGfLyvEGnY-900sw 2026-03-31 03:17:48+00:00| published-proof-of-concept| Telegram/IB0vDqkbcSoOXVxhuE1D8EzJAmWz8cRHRiExVeFYKeG0j8 2026-03-31 04:05:52+00:00| seen|...
CVE-2026-4020
creationtimestamp| type| source ---|---|--- 2026-03-31 02:21:17+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mid4jn5ah52r 2026-03-31 02:21:34+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mid4k5swsi27 2026-03-31 03:17:25+00:00| seen|...