Vulnerabilities > Discourse

DATE CVE VULNERABILITY TITLE RISK
2024-07-03 CVE-2024-37157 Server-Side Request Forgery (SSRF) vulnerability in Discourse
Discourse is an open-source discussion platform.
network
low complexity
discourse CWE-918
5.3
2024-07-03 CVE-2024-35234 Cross-site Scripting vulnerability in Discourse
Discourse is an open-source discussion platform.
network
low complexity
discourse CWE-79
6.1
2024-07-03 CVE-2024-36113 Missing Authorization vulnerability in Discourse
Discourse is an open-source discussion platform.
network
low complexity
discourse CWE-862
6.5
2024-02-01 CVE-2024-24755 Unspecified vulnerability in Discourse Group Membership IP Blocks
discourse-group-membership-ip-block is a discourse plugin that adds support for adding users to groups based on their IP address.
network
low complexity
discourse
5.3
2024-01-30 CVE-2024-23834 Unspecified vulnerability in Discourse
Discourse is an open-source discussion platform.
network
low complexity
discourse
6.1
2024-01-12 CVE-2023-48297 Unspecified vulnerability in Discourse
Discourse is a platform for community discussion.
network
low complexity
discourse
7.5
2024-01-12 CVE-2023-49098 Unspecified vulnerability in Discourse Reactions 0.1/0.2/0.4
Discourse-reactions is a plugin that allows user to add their reactions to the post.
network
low complexity
discourse
3.5
2024-01-12 CVE-2023-49099 Unspecified vulnerability in Discourse
Discourse is a platform for community discussion.
network
low complexity
discourse
4.3
2024-01-12 CVE-2024-21655 Allocation of Resources Without Limits or Throttling vulnerability in Discourse
Discourse is a platform for community discussion.
network
low complexity
discourse CWE-770
4.3
2023-11-10 CVE-2023-47120 Unspecified vulnerability in Discourse 3.1.0/3.1.1/3.2.0
Discourse is an open source platform for community discussion.
network
low complexity
discourse
7.5