CVE-2024-23654
The CVE-2024-23654 entry concerns the discourse-ai plugin for Discourse, where admin-initiated SSRF was possible during interactions with various AI services. The underlying issue affected versions prior to commit 94ba0dadc2cf38e8f81c3936974c167219878edd; a patch was added in that commit. A pract...