Vulnerabilities > Discourse > Discourse Chat > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-10-06 | CVE-2022-39279 | Cross-site Scripting vulnerability in Discourse Discourse-Chat 0.3/0.4 discourse-chat is a plugin for the Discourse message board which adds chat functionality. | 5.4 |
| 2022-09-06 | CVE-2022-36057 | Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in Discourse Discourse-Chat 0.3/0.4 Discourse-Chat is an asynchronous messaging plugin for the Discourse open-source discussion platform. | 4.8 |
| 2022-06-21 | CVE-2022-31095 | Missing Authorization vulnerability in Discourse Discourse-Chat 0.3 discourse-chat is a chat plugin for the Discourse application. | 6.5 |