3 matches found
CVE-2026-47264 Discourse: Don't leak restricted tag group names via tag info
Discourse is an open-source discussion platform. From versions 2026.1.0-latest to before 2026.1.4, 2026.3.0-latest to before 2026.3.1, and 2026.4.0-latest to before 2026.4.1, DetailedTagSerializertaggroupnames returned every tag group a tag belonged to without filtering against the requesting...
CVE-2026-47264 Discourse: Don't leak restricted tag group names via tag info
Discourse is an open-source discussion platform. From versions 2026.1.0-latest to before 2026.1.4, 2026.3.0-latest to before 2026.3.1, and 2026.4.0-latest to before 2026.4.1, DetailedTagSerializertaggroupnames returned every tag group a tag belonged to without filtering against the requesting...
The vulnerability of the PM_V3!CTagInfoThreadBase function in the WebAccess HMI Designer software allows a attacker to cause a service failure.
The vulnerability of the PMV3!CTagInfoThreadBase function GetNICInfo+0x0000000000512918 in the software for developing and managing HMI applications of WebAccess HMI Designer is related to the execution of operations outside of the buffer in memory. Exploiting this vulnerability could allow a...