discourse - CVE CyberSecurity Database News (Page 2)

Nov 28, 2022 Exploit discourse

CVE-2022-41944 - Discourse Unauthorized Topic Notification Exposure Vulnerability Patched in 2.8.12 and 2.9..beta13

Discourse, a popular open-source discussion platform, has recently disclosed a vulnerability under the code name CVE-2022-41944. This security flaw causes unauthorized users to see notifications

Nov 28, 2022 discourse

CVE-2022-41921: Discourse Denial of Service Vulnerability in Chat Messages Prior to 2.9..beta13 – Upgrade Required

In this post, we will discuss a newly discovered vulnerability, CVE-2022-41921, in the popular open-source discussion platform Discourse. This issue can result in a Denial

Nov 14, 2022 discourse

CVE-2022-39385: Discourse Invitation Redemption Vulnerability Leading to Unauthorized Access to Private Message Topics

Discourse is a popular open source discussion platform used by a wide range of communities worldwide. This post describes a recent vulnerability (CVE-2022-39385) discovered in

Nov 2, 2022 Exploit discourse

CVE-2022-39378 - Discourse Information Exposure via User Badges in Topics with Restricted Access

Discourse is a popular open-source platform for creating modern and engaging community forums. Recently, a security vulnerability (CVE-2022-39378) was discovered in Discourse, which could potentially

Nov 2, 2022 discourse

CVE-2022-39356 - Discourse Invitation Vulnerability: Unauthorized Access to Non-admin Accounts

CVE-2022-39356 is a security vulnerability discovered in the popular community discussion platform Discourse. The vulnerability affects the platform's invitation system, allowing unauthorized users