Vulnerabilities > Discourse

DATE CVE VULNERABILITY TITLE RISK
2022-12-02 CVE-2022-46159 Allocation of Resources Without Limits or Throttling vulnerability in Discourse
Discourse is an open-source discussion platform.
network
low complexity
discourse CWE-770
4.3
2022-11-30 CVE-2022-46162 Injection vulnerability in Discourse Bbcode
discourse-bbcode is the official BBCode plugin for Discourse.
network
low complexity
discourse CWE-74
critical
9.8
2022-11-29 CVE-2022-46150 Information Exposure vulnerability in Discourse
Discourse is an open-source discussion platform.
network
low complexity
discourse CWE-200
4.3
2022-11-29 CVE-2022-46148 Cross-site Scripting vulnerability in Discourse
Discourse is an open-source messaging platform.
network
low complexity
discourse CWE-79
5.4
2022-11-28 CVE-2022-41921 Allocation of Resources Without Limits or Throttling vulnerability in Discourse
Discourse is an open-source discussion platform.
network
low complexity
discourse CWE-770
4.3
2022-11-28 CVE-2022-41944 Information Exposure vulnerability in Discourse
Discourse is an open-source discussion platform.
network
low complexity
discourse CWE-200
4.3
2022-11-14 CVE-2022-39385 Incorrect Authorization vulnerability in Discourse
Discourse is the an open source discussion platform.
network
low complexity
discourse CWE-863
6.5
2022-11-14 CVE-2022-41913 Unspecified vulnerability in Discourse Calendar 0.2
Discourse-calendar is a plugin for the Discourse messaging platform which adds the ability to create a dynamic calendar in the first post of a topic.
network
low complexity
discourse
5.4
2022-11-02 CVE-2022-39241 Server-Side Request Forgery (SSRF) vulnerability in Discourse
Discourse is a platform for community discussion.
network
low complexity
discourse CWE-918
4.9
2022-11-02 CVE-2022-39356 Incorrect Authorization vulnerability in Discourse
Discourse is a platform for community discussion.
network
low complexity
discourse CWE-863
8.8