Vulnerabilities > Discourse

DATE CVE VULNERABILITY TITLE RISK
2023-01-05 CVE-2022-23549 Unspecified vulnerability in Discourse
Discourse is an option source discussion platform.
network
low complexity
discourse
6.5
6.5
2023-01-05 CVE-2022-46168 Privacy Violation vulnerability in Discourse
Discourse is an option source discussion platform.
network
low complexity
discourse CWE-359
3.5
3.5
2023-01-04 CVE-2022-46180 Cross-site Scripting vulnerability in Discourse Mermaid
Discourse Mermaid (discourse-mermaid-theme-component) allows users of Discourse, open-source forum software, to create graphs using the Mermaid syntax.
network
low complexity
discourse CWE-79
5.4
5.4
2022-12-02 CVE-2022-46159 Allocation of Resources Without Limits or Throttling vulnerability in Discourse 0.9.2/2.9.0
Discourse is an open-source discussion platform.
network
low complexity
discourse CWE-770
4.3
4.3
2022-11-30 CVE-2022-46162 Cross-site Scripting vulnerability in Discourse Bbcode
discourse-bbcode is the official BBCode plugin for Discourse.
network
low complexity
discourse CWE-79
critical
 9.8
9.8
2022-11-29 CVE-2022-46150 Information Exposure vulnerability in Discourse
Discourse is an open-source discussion platform.
network
low complexity
discourse CWE-200
4.3
4.3
2022-11-29 CVE-2022-46148 Cross-site Scripting vulnerability in Discourse
Discourse is an open-source messaging platform.
network
low complexity
discourse CWE-79
5.4
5.4
2022-11-28 CVE-2022-41921 Allocation of Resources Without Limits or Throttling vulnerability in Discourse
Discourse is an open-source discussion platform.
network
low complexity
discourse CWE-770
4.3
4.3
2022-11-28 CVE-2022-41944 Incorrect Authorization vulnerability in Discourse
Discourse is an open-source discussion platform.
network
low complexity
discourse CWE-863
4.3
4.3
2022-11-14 CVE-2022-39385 Incorrect Authorization vulnerability in Discourse
Discourse is the an open source discussion platform.
network
low complexity
discourse CWE-863
6.5
6.5