Vulnerabilities > Discourse > Medium

DATE CVE VULNERABILITY TITLE RISK
2024-07-03 CVE-2024-36113 Missing Authorization vulnerability in Discourse
Discourse is an open-source discussion platform.
network
low complexity
discourse CWE-862
6.5
2024-02-01 CVE-2024-24755 Unspecified vulnerability in Discourse Group Membership IP Blocks
discourse-group-membership-ip-block is a discourse plugin that adds support for adding users to groups based on their IP address.
network
low complexity
discourse
5.3
2024-01-30 CVE-2024-23834 Unspecified vulnerability in Discourse
Discourse is an open-source discussion platform.
network
low complexity
discourse
6.1
2024-01-12 CVE-2023-49099 Unspecified vulnerability in Discourse
Discourse is a platform for community discussion.
network
low complexity
discourse
4.3
2024-01-12 CVE-2024-21655 Allocation of Resources Without Limits or Throttling vulnerability in Discourse
Discourse is a platform for community discussion.
network
low complexity
discourse CWE-770
4.3
2023-11-10 CVE-2023-45806 Unspecified vulnerability in Discourse
Discourse is an open source platform for community discussion.
network
low complexity
discourse
5.4
2023-11-10 CVE-2023-46130 Unspecified vulnerability in Discourse
Discourse is an open source platform for community discussion.
network
low complexity
discourse
5.4
2023-11-10 CVE-2023-47119 Cross-site Scripting vulnerability in Discourse
Discourse is an open source platform for community discussion.
network
low complexity
discourse CWE-79
6.1
2023-10-16 CVE-2023-43658 Unspecified vulnerability in Discourse Calendar 1.0.0/1.0.1
dicourse-calendar is a plugin for the Discourse messaging platform which adds the ability to create a dynamic calendar in the first post of a topic.
network
low complexity
discourse
6.1
2023-10-16 CVE-2023-43659 Unspecified vulnerability in Discourse
Discourse is an open source platform for community discussion.
network
low complexity
discourse
5.4