Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

Positive Technologies
Positive Technologiesadded 2 days ago7 views

PT-2026-48988

Discourse is an open-source discussion platform. From versions 2026.1.0-latest to before 2026.1.4, 2026.3.0-latest to before 2026.3.1, and 2026.4.0-latest to before 2026.4.1, DetailedTagSerializertag group names returned every tag group a tag belonged to without filtering against the requesting...

5.3CVSS5.2AI score0.00028EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2024-36564

Malicious code in bioql PyPI...

7.5CVSS6.4AI score0.00612EPSS
Exploits0References3
RedhatCVE
RedhatCVEadded 2025/05/22 9:35 p.m.6 views

CVE-2021-43792

Discourse is an open source discussion platform. In affected versions a vulnerability affects users of tag groups who use the "Tags are visible only to the following groups" feature. A tag group may only allow a certain group e.g. staff to view certain tags. Users who were tracking or watching th...

4.3CVSS6.7AI score0.00265EPSS
Exploits0
OSV
OSVadded 2024/08/01 11:18 a.m.14 views

BIT-DISCOURSE-2024-37299 Discourse vulnerable to DoS via Tag Group

Discourse is an open source discussion platform. Prior to 3.2.5 and 3.3.0.beta5, crafting requests to submit very long tag group names can reduce the availability of a Discourse instance. This vulnerability is fixed in 3.2.5 and 3.3.0.beta5...

7.5CVSS5.8AI score0.00612EPSS
Exploits0References4
Vulnrichment
Vulnrichmentadded 2024/07/30 2:22 p.m.13 views

CVE-2024-37299 Discourse vulnerable to DoS via Tag Group

Discourse is an open source discussion platform. Prior to 3.2.5 and 3.3.0.beta5, crafting requests to submit very long tag group names can reduce the availability of a Discourse instance. This vulnerability is fixed in 3.2.5 and 3.3.0.beta5...

4.9CVSS6.6AI score0.00612EPSS
Exploits0References3
Cvelist
Cvelistadded 2024/07/30 2:22 p.m.21 views

CVE-2024-37299 Discourse vulnerable to DoS via Tag Group

Discourse is an open source discussion platform. Prior to 3.2.5 and 3.3.0.beta5, crafting requests to submit very long tag group names can reduce the availability of a Discourse instance. This vulnerability is fixed in 3.2.5 and 3.3.0.beta5...

4.9CVSS0.00612EPSS
Exploits0References3
CVE
CVEadded 2024/07/30 2:22 p.m.56 views

CVE-2024-37299

Discourse (open source forum platform) is vulnerable to DoS via crafting very long tag group names. Affects versions prior to 3.2.5 and 3.3.0.beta5; the issue reduces availability of a Discourse instance. Remediation: upgrade to 3.2.5 or 3.3.0.beta5 (fixed in those releases). Public details in th...

7.5CVSS4.9AI score0.00612EPSS
Exploits0References3Affected Software1
CNNVD
CNNVDadded 2024/07/30 12:0 a.m.3 views

Discourse 安全漏洞

Discourse is an open source community discussion platform from Discourse Open Source. The platform includes community, email, and chat room features. A security vulnerability exists in Discourse that stems from the fact that writing requests that submit very long tag group names may reduce the...

7.5CVSS6.6AI score0.00612EPSS
Exploits0References4
OSV
OSVadded 2017/08/02 5:29 a.m.1 views

CVE-2017-12199

The Etoile Ultimate Product Catalog plugin 4.2.11 for WordPress has SQL injection with these wp-admin/admin-ajax.php POST actions: catalogueupdateorder list-item, videoupdateorder video-item, imageupdateorder list-item, taggroupupdateorder listitem, categoryproductsupdateorder...

9.8CVSS5.9AI score0.02081EPSS
Exploits1References1
Rows per page
Query Builder