Discourse

Discourse

238 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 0.06%
  • Veröffentlicht 03.04.2026 21:27:59
  • Zuletzt bearbeitet 07.04.2026 13:20:55

Discourse is an open-source discussion platform. From versions 2026.1.0-latest to before 2026.1.3, 2026.2.0-latest to before 2026.2.2, and 2026.3.0-latest to before 2026.3.0, staged user custom fields and username are exposed on public invite pages w...

  • EPSS 0.06%
  • Veröffentlicht 03.04.2026 21:27:12
  • Zuletzt bearbeitet 07.04.2026 13:20:55

Discourse is an open-source discussion platform. From versions 2026.1.0-latest to before 2026.1.3, 2026.2.0-latest to before 2026.2.2, and 2026.3.0-latest to before 2026.3.0, an authorization bypass vulnerability allows unauthenticated or unauthorize...

  • EPSS 0.03%
  • Veröffentlicht 31.03.2026 17:42:15
  • Zuletzt bearbeitet 10.04.2026 01:50:42

Discourse is an open-source discussion platform. From versions 2026.1.0-latest to before 2026.1.3, 2026.2.0-latest to before 2026.2.2, and 2026.3.0-latest to before 2026.3.0, an authenticated moderator-level user could retrieve post content, topic ti...

  • EPSS 0.04%
  • Veröffentlicht 31.03.2026 17:42:00
  • Zuletzt bearbeitet 09.04.2026 16:20:28

Discourse is an open-source discussion platform. From versions 2026.1.0-latest to before 2026.1.3, 2026.2.0-latest to before 2026.2.2, and 2026.3.0-latest to before 2026.3.0, an authorization bypass in the Category Chatables Controller show action al...

  • EPSS 0.03%
  • Veröffentlicht 31.03.2026 17:41:44
  • Zuletzt bearbeitet 09.04.2026 15:51:02

Discourse is an open-source discussion platform. From versions 2026.1.0-latest to before 2026.1.3, 2026.2.0-latest to before 2026.2.2, and 2026.3.0-latest to before 2026.3.0, the group email settings test endpoint could be used to make the server ini...

  • EPSS 0.04%
  • Veröffentlicht 31.03.2026 17:41:32
  • Zuletzt bearbeitet 09.04.2026 15:50:09

Discourse is an open-source discussion platform. From versions 2026.1.0-latest to before 2026.1.3, 2026.2.0-latest to before 2026.2.2, and 2026.3.0-latest to before 2026.3.0, a user may be able to purchase a lower tier subscription but grant themselv...

  • EPSS 0.03%
  • Veröffentlicht 31.03.2026 17:41:20
  • Zuletzt bearbeitet 09.04.2026 15:32:00

Discourse is an open-source discussion platform. From versions 2026.1.0-latest to before 2026.1.3, 2026.2.0-latest to before 2026.2.2, and 2026.3.0-latest to before 2026.3.0, an authenticated user can obtain shared draft topic titles by sending an in...

  • EPSS 0.03%
  • Veröffentlicht 31.03.2026 17:41:03
  • Zuletzt bearbeitet 09.04.2026 18:30:46

Discourse is an open-source discussion platform. From versions 2026.1.0-latest to before 2026.1.3, 2026.2.0-latest to before 2026.2.2, and 2026.3.0-latest to before 2026.3.0, non-staff users could access read receipt information for staff-only posts ...

  • EPSS 0.03%
  • Veröffentlicht 31.03.2026 17:40:41
  • Zuletzt bearbeitet 09.04.2026 18:30:55

Discourse is an open-source discussion platform. From versions 2026.1.0-latest to before 2026.1.3, 2026.2.0-latest to before 2026.2.2, and 2026.3.0-latest to before 2026.3.0, there is possible channel membership inference from chat user search withou...

  • EPSS 0.03%
  • Veröffentlicht 31.03.2026 17:40:41
  • Zuletzt bearbeitet 09.04.2026 18:30:09

Discourse is an open-source discussion platform. From versions 2026.1.0-latest to before 2026.1.3, 2026.2.0-latest to before 2026.2.2, and 2026.3.0-latest to before 2026.3.0, users who lost access to a topic (e.g., removed from a private category gro...