Vulnerabilities > Discourse
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-01-04 | CVE-2021-43850 | Unspecified vulnerability in Discourse Discourse is an open source platform for community discussion. | 6.8 |
| 2021-12-17 | CVE-2021-43840 | Unspecified vulnerability in Discourse Message BUS message_bus is a messaging bus for Ruby processes and web clients. | 6.5 |
| 2021-12-01 | CVE-2021-43792 | Unspecified vulnerability in Discourse Discourse is an open source discussion platform. | 4.3 |
| 2021-11-15 | CVE-2021-41271 | Unspecified vulnerability in Discourse Discourse is a platform for community discussion. | 5.3 |
| 2021-11-15 | CVE-2021-41263 | Use of a Broken or Risky Cryptographic Algorithm vulnerability in Discourse Rails Multisite rails_multisite provides multi-db support for Rails applications. | 8.8 |
| 2021-10-20 | CVE-2021-41163 | Injection vulnerability in Discourse Discourse is an open source platform for community discussion. | 9.8 |
| 2021-09-27 | CVE-2021-41095 | Cross-site Scripting vulnerability in Discourse Discourse is an open source discussion platform. | 6.1 |
| 2021-09-23 | CVE-2020-24327 | Server-Side Request Forgery (SSRF) vulnerability in Discourse 2.3.2/2.6.0 Server Side Request Forgery (SSRF) vulnerability exists in Discourse 2.3.2 and 2.6 via the email function. | 5.3 |
| 2021-09-20 | CVE-2021-41082 | Incorrect Authorization vulnerability in Discourse Discourse is a platform for community discussion. | 7.5 |
| 2021-08-26 | CVE-2021-39161 | Cross-site Scripting vulnerability in Discourse Discourse is an open source platform for community discussion. | 5.4 |