Lucene search
Calendar Security Vulnerabilities - 2023
cve
dicourse-calendar is a plugin for the Discourse messaging platform which adds the ability to create a dynamic calendar in the first post of a topic. Improper escaping of event titles could lead to Cross-site Scripting (XSS) within the 'email preview' UI when a site has CSP disabled. Having CSP disa...
8CVSS
5.9AI Score
0.001EPSS
2023-10-16 10:15 PM
35