Vulnerabilities > Discourse
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2024-08-30 | CVE-2024-21658 | Allocation of Resources Without Limits or Throttling vulnerability in Discourse Calendar 1.0.0/1.0.1 discourse-calendar is a discourse plugin which adds the ability to create a dynamic calendar in the first post of a topic. | 4.3 |
2024-02-01 | CVE-2024-24755 | Unspecified vulnerability in Discourse Group Membership IP Blocks discourse-group-membership-ip-block is a discourse plugin that adds support for adding users to groups based on their IP address. | 5.3 |
2024-01-30 | CVE-2024-23834 | Cross-site Scripting vulnerability in Discourse Discourse is an open-source discussion platform. | 6.1 |
2024-01-12 | CVE-2023-48297 | Unspecified vulnerability in Discourse Discourse is a platform for community discussion. | 7.5 |
2024-01-12 | CVE-2023-49098 | Improper Access Control vulnerability in Discourse Reactions 0.1/0.2 Discourse-reactions is a plugin that allows user to add their reactions to the post. | 3.5 |
2024-01-12 | CVE-2023-49099 | Improper Access Control vulnerability in Discourse Discourse is a platform for community discussion. | 4.3 |
2024-01-12 | CVE-2024-21655 | Allocation of Resources Without Limits or Throttling vulnerability in Discourse Discourse is a platform for community discussion. | 4.3 |
2023-11-10 | CVE-2023-47120 | Allocation of Resources Without Limits or Throttling vulnerability in Discourse 3.1.0/3.1.1/3.2.0 Discourse is an open source platform for community discussion. | 7.5 |
2023-11-10 | CVE-2023-47121 | Server-Side Request Forgery (SSRF) vulnerability in Discourse Discourse is an open source platform for community discussion. | 9.8 |
2023-11-10 | CVE-2023-45806 | Unspecified vulnerability in Discourse Discourse is an open source platform for community discussion. | 5.4 |