Discourse ≫ Discourse

238 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.

2.7

CVE-2026-34947

EPSS 0.06%
Veröffentlicht 03.04.2026 21:27:59
Zuletzt bearbeitet 07.04.2026 13:20:55

Discourse is an open-source discussion platform. From versions 2026.1.0-latest to before 2026.1.3, 2026.2.0-latest to before 2026.2.2, and 2026.3.0-latest to before 2026.3.0, staged user custom fields and username are exposed on public invite pages w...

6.3

CVE-2026-27481

EPSS 0.06%
Veröffentlicht 03.04.2026 21:27:12
Zuletzt bearbeitet 07.04.2026 13:20:55

Discourse is an open-source discussion platform. From versions 2026.1.0-latest to before 2026.1.3, 2026.2.0-latest to before 2026.2.2, and 2026.3.0-latest to before 2026.3.0, an authorization bypass vulnerability allows unauthenticated or unauthorize...

2.7

CVE-2026-33415

EPSS 0.03%
Veröffentlicht 31.03.2026 17:42:15
Zuletzt bearbeitet 10.04.2026 01:50:42

Discourse is an open-source discussion platform. From versions 2026.1.0-latest to before 2026.1.3, 2026.2.0-latest to before 2026.2.2, and 2026.3.0-latest to before 2026.3.0, an authenticated moderator-level user could retrieve post content, topic ti...

6.5

CVE-2026-33300

EPSS 0.04%
Veröffentlicht 31.03.2026 17:42:00
Zuletzt bearbeitet 09.04.2026 16:20:28

Discourse is an open-source discussion platform. From versions 2026.1.0-latest to before 2026.1.3, 2026.2.0-latest to before 2026.2.2, and 2026.3.0-latest to before 2026.3.0, an authorization bypass in the Category Chatables Controller show action al...

CVE-2026-33185

EPSS 0.03%
Veröffentlicht 31.03.2026 17:41:44
Zuletzt bearbeitet 09.04.2026 15:51:02

Discourse is an open-source discussion platform. From versions 2026.1.0-latest to before 2026.1.3, 2026.2.0-latest to before 2026.2.2, and 2026.3.0-latest to before 2026.3.0, the group email settings test endpoint could be used to make the server ini...

5.3

CVE-2026-33074

EPSS 0.04%
Veröffentlicht 31.03.2026 17:41:32
Zuletzt bearbeitet 09.04.2026 15:50:09

Discourse is an open-source discussion platform. From versions 2026.1.0-latest to before 2026.1.3, 2026.2.0-latest to before 2026.2.2, and 2026.3.0-latest to before 2026.3.0, a user may be able to purchase a lower tier subscription but grant themselv...

4.3

CVE-2026-32951

EPSS 0.03%
Veröffentlicht 31.03.2026 17:41:20
Zuletzt bearbeitet 09.04.2026 15:32:00

Discourse is an open-source discussion platform. From versions 2026.1.0-latest to before 2026.1.3, 2026.2.0-latest to before 2026.2.2, and 2026.3.0-latest to before 2026.3.0, an authenticated user can obtain shared draft topic titles by sending an in...

4.3

CVE-2026-32620

EPSS 0.03%
Veröffentlicht 31.03.2026 17:41:03
Zuletzt bearbeitet 09.04.2026 18:30:46

Discourse is an open-source discussion platform. From versions 2026.1.0-latest to before 2026.1.3, 2026.2.0-latest to before 2026.2.2, and 2026.3.0-latest to before 2026.3.0, non-staff users could access read receipt information for staff-only posts ...

4.3

CVE-2026-32618

EPSS 0.03%
Veröffentlicht 31.03.2026 17:40:41
Zuletzt bearbeitet 09.04.2026 18:30:55

Discourse is an open-source discussion platform. From versions 2026.1.0-latest to before 2026.1.3, 2026.2.0-latest to before 2026.2.2, and 2026.3.0-latest to before 2026.3.0, there is possible channel membership inference from chat user search withou...

4.3

CVE-2026-32619

EPSS 0.03%
Veröffentlicht 31.03.2026 17:40:41
Zuletzt bearbeitet 09.04.2026 18:30:09

Discourse is an open-source discussion platform. From versions 2026.1.0-latest to before 2026.1.3, 2026.2.0-latest to before 2026.2.2, and 2026.3.0-latest to before 2026.3.0, users who lost access to a topic (e.g., removed from a private category gro...

1234...24>

Team-orientierte Vulnerability Management Plattform

Features der Plattform