Vulnerabilities > Discourse > Discourse Calendar

DATE CVE VULNERABILITY TITLE RISK
2024-08-30 CVE-2024-21658 Allocation of Resources Without Limits or Throttling vulnerability in Discourse Calendar 1.0.0/1.0.1
discourse-calendar is a discourse plugin which adds the ability to create a dynamic calendar in the first post of a topic.
network
low complexity
discourse CWE-770
4.3
4.3
2023-10-16 CVE-2023-43658 Cross-site Scripting vulnerability in Discourse Calendar 1.0.0/1.0.1
dicourse-calendar is a plugin for the Discourse messaging platform which adds the ability to create a dynamic calendar in the first post of a topic.
network
low complexity
discourse CWE-79
6.1
6.1
2022-06-14 CVE-2022-31059 Cross-site Scripting vulnerability in Discourse Calendar 1.0.0
Discourse Calendar is a calendar plugin for Discourse, an open-source messaging app.
network
low complexity
discourse CWE-79
5.4
5.4