Vulnerabilities > Discourse

DATE CVE VULNERABILITY TITLE RISK
2023-01-28 CVE-2023-23624 Information Exposure vulnerability in Discourse
Discourse is an open-source discussion platform.
network
low complexity
discourse CWE-200
5.3
2023-01-27 CVE-2023-22740 Allocation of Resources Without Limits or Throttling vulnerability in Discourse
Discourse is an open source platform for community discussion.
network
low complexity
discourse CWE-770
6.5
2023-01-26 CVE-2023-22468 Cross-site Scripting vulnerability in Discourse 0.9.2/2.9.0/3.0.0
Discourse is an open source platform for community discussion.
network
low complexity
discourse CWE-79
5.4
2023-01-26 CVE-2023-22739 Allocation of Resources Without Limits or Throttling vulnerability in Discourse
Discourse is an open source platform for community discussion.
network
low complexity
discourse CWE-770
6.5
2023-01-05 CVE-2023-22455 Cross-site Scripting vulnerability in Discourse
Discourse is an option source discussion platform.
network
low complexity
discourse CWE-79
6.1
2023-01-05 CVE-2022-46177 Insufficient Session Expiration vulnerability in Discourse
Discourse is an option source discussion platform.
network
low complexity
discourse CWE-613
8.1
2023-01-05 CVE-2023-22453 Information Exposure vulnerability in Discourse
Discourse is an option source discussion platform.
network
low complexity
discourse CWE-200
5.3
2023-01-05 CVE-2023-22454 Cross-site Scripting vulnerability in Discourse
Discourse is an option source discussion platform.
network
low complexity
discourse CWE-79
6.1
2023-01-05 CVE-2022-23546 Information Exposure vulnerability in Discourse
In version 2.9.0.beta14 of Discourse, an open-source discussion platform, maliciously embedded urls can leak an admin's digest of recent topics, possibly exposing private information.
local
low complexity
discourse CWE-200
5.5
2023-01-05 CVE-2022-23548 Unspecified vulnerability in Discourse
Discourse is an option source discussion platform.
network
low complexity
discourse
6.5