Vulnerabilities > Discourse
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-11-10 | CVE-2023-46130 | Allocation of Resources Without Limits or Throttling vulnerability in Discourse Discourse is an open source platform for community discussion. | 5.4 |
| 2023-11-10 | CVE-2023-47119 | Cross-site Scripting vulnerability in Discourse Discourse is an open source platform for community discussion. | 6.1 |
| 2023-10-16 | CVE-2023-43658 | Cross-site Scripting vulnerability in Discourse Calendar 1.0.0/1.0.1 dicourse-calendar is a plugin for the Discourse messaging platform which adds the ability to create a dynamic calendar in the first post of a topic. | 6.1 |
| 2023-10-16 | CVE-2023-43659 | Cross-site Scripting vulnerability in Discourse 2.6.3/2.6.4/3.2.0 Discourse is an open source platform for community discussion. | 5.4 |
| 2023-10-16 | CVE-2023-43814 | Unspecified vulnerability in Discourse Discourse is an open source platform for community discussion. | 3.7 |
| 2023-10-16 | CVE-2023-44388 | Resource Exhaustion vulnerability in Discourse Discourse is an open source platform for community discussion. | 7.5 |
| 2023-10-16 | CVE-2023-44391 | Unspecified vulnerability in Discourse Discourse is an open source platform for community discussion. | 5.3 |
| 2023-10-16 | CVE-2023-45131 | Unspecified vulnerability in Discourse 2.6.3/2.6.4/3.2.0 Discourse is an open source platform for community discussion. | 7.5 |
| 2023-10-16 | CVE-2023-45147 | Unspecified vulnerability in Discourse Discourse is an open source community platform. | 3.1 |
| 2023-10-06 | CVE-2023-44384 | Server-Side Request Forgery (SSRF) vulnerability in Discourse Jira 20231001 Discourse-jira is a Discourse plugin allows Jira projects, issue types, fields and field options will be synced automatically. | 4.1 |