Filter
Versions
2.9.0-beta1
47
2.9.0-beta2
47
2.9.0-beta3
47
2.9.0-beta4
44
2.9.0-beta5
43
2.9.0-beta7
43
2.9.0-beta6
42
2.9.0-beta8
41
2.8.0-beta1
37
2.8.0-beta2
37
2.8.0-beta3
37
2.9.0-beta10
36
2.8.0-beta4
35
2.8.0-beta5
33
2.8.0-beta6
33
2.9.0-beta11
33
2.9.0-beta9
33
3.1.0-beta1
33
2.9.0-beta12
32
2.8.0-beta7
31
2.9.0-beta13
30
2.9.0-beta14
29
2.8.0-beta8
28
2.8.0-beta9
28
2.8.0-beta10
27
3.0.0-beta15
27
2.4.0-beta1
25
2.4.0-beta2
25
3.1.0-beta2
25
2.7.0-beta1
24
1.1.0-beta1
23
1.1.0-beta2
23
1.1.0-beta3
23
1.1.0-beta4
23
1.1.0-beta5
23
1.1.0-beta6
23
1.1.0-beta6b
23
1.1.0-beta7
23
1.1.0-beta8
23
1.2.0-beta1
23
1.2.0-beta2
23
1.2.0-beta3
23
1.2.0-beta4
23
1.2.0-beta5
23
1.2.0-beta6
23
1.2.0-beta7
23
1.2.0-beta8
23
1.2.0-beta9
23
1.3.0-beta1
23
1.3.0-beta10
23
1.3.0-beta11
23
1.3.0-beta2
23
1.3.0-beta3
23
1.3.0-beta4
23
1.3.0-beta5
23
1.3.0-beta6
23
1.3.0-beta7
23
1.3.0-beta8
23
1.3.0-beta9
23
1.4.0-beta1
23
1.4.0-beta10
23
1.4.0-beta11
23
1.4.0-beta12
23
1.4.0-beta2
23
1.4.0-beta3
23
1.4.0-beta4
23
1.4.0-beta5
23
1.4.0-beta6
23
1.4.0-beta7
23
1.4.0-beta8
23
1.4.0-beta9
23
1.5.0-beta1
23
1.5.0-beta10
23
1.5.0-beta11
23
1.5.0-beta12
23
1.5.0-beta13
23
1.5.0-beta13b
23
1.5.0-beta14
23
1.5.0-beta2
23
1.5.0-beta3
23
1.5.0-beta4
23
1.5.0-beta5
23
1.5.0-beta6
23
1.5.0-beta7
23
1.5.0-beta8
23
1.5.0-beta9
23
1.6.0-beta1
23
1.6.0-beta10
23
1.6.0-beta11
23
1.6.0-beta12
23
1.6.0-beta2
23
1.6.0-beta3
23
1.6.0-beta4
23
1.6.0-beta5
23
1.6.0-beta6
23
1.6.0-beta7
23
1.6.0-beta8
23
1.6.0-beta9
23
1.7.0-beta1
23
1.7.0-beta10
23
1.7.0-beta11
23
1.7.0-beta2
23
1.7.0-beta3
23
1.7.0-beta4
23
1.7.0-beta5
23
1.7.0-beta6
23
1.7.0-beta7
23
1.7.0-beta8
23
1.7.0-beta9
23
1.8.0-beta1
23
1.8.0-beta10
23
1.8.0-beta11
23
1.8.0-beta12
23
1.8.0-beta13
23
1.8.0-beta2
23
1.8.0-beta3
23
1.8.0-beta4
23
1.8.0-beta5
23
1.8.0-beta6
23
1.8.0-beta7
23
1.8.0-beta8
23
1.8.0-beta9
23
1.9.0-beta1
23
1.9.0-beta10
23
1.9.0-beta11
23
1.9.0-beta12
23
1.9.0-beta13
23
1.9.0-beta14
23
1.9.0-beta15
23
1.9.0-beta16
23
1.9.0-beta17
23
1.9.0-beta2
23
1.9.0-beta3
23
1.9.0-beta4
23
1.9.0-beta5
23
1.9.0-beta6
23
1.9.0-beta7
23
1.9.0-beta8
23
1.9.0-beta9
23
2.0.0-beta1
23
2.0.0-beta10
23
2.0.0-beta2
23
2.0.0-beta3
23
2.0.0-beta4
23
2.0.0-beta5
23
2.0.0-beta6
23
2.0.0-beta7
23
2.0.0-beta8
23
2.0.0-beta9
23
2.1.0-beta1
23
2.1.0-beta2
23
2.1.0-beta3
23
2.1.0-beta4
23
2.1.0-beta5
23
2.1.0-beta6
23
2.2.0-beta1
23
2.2.0-beta10
23
2.2.0-beta2
23
2.2.0-beta3
23
2.2.0-beta4
23
2.2.0-beta5
23
2.2.0-beta6
23
2.2.0-beta7
23
2.2.0-beta8
23
2.2.0-beta9
23
2.3.0-beta1
23
2.3.0-beta10
23
2.3.0-beta11
23
2.3.0-beta2
23
2.3.0-beta3
23
2.3.0-beta4
23
2.3.0-beta5
23
2.3.0-beta6
23
2.3.0-beta7
23
2.3.0-beta8
23
2.3.0-beta9
23
2.4.0-beta10
23
2.4.0-beta11
23
2.4.0-beta3
23
2.4.0-beta4
23
2.4.0-beta5
23
2.4.0-beta6
23
2.4.0-beta7
23
2.4.0-beta8
23
2.4.0-beta9
23
2.5.0-beta1
23
2.5.0-beta2
23
2.5.0-beta3
23
2.5.0-beta4
23
2.5.0-beta5
23
2.5.0-beta6
23
2.5.0-beta7
23
2.6.0-beta1
23
2.6.0-beta2
23
2.6.0-beta3
23
2.6.0-beta4
23
2.6.0-beta5
23
2.6.0-beta6
23
2.7.0-beta2
23
2.7.0-beta3
23
2.7.0-beta4
23
2.7.0-beta5
23
2.7.0-beta6
23
2.7.0-beta7
23
2.7.0-beta8
23
2.7.0-beta9
23
2.8.0-beta11
23
3.0.0-beta16
19
3.1.0-beta3
17
3.2.0-beta1
16
3.1.0-beta5
13
3.1.0-beta6
11
3.2.0-beta2
10
3.3.0-beta1
7
3.3.0-beta2
7
3.1.1
6
3.1.0-beta7
5
3.1.0-beta8
5
3.1.0-beta4
4
3.2.0-beta3
4
3.3.0-beta3
4
3.4.0
4
3.1.0
3
3.4.0-beta1
3
2.3.2
2
2.6.0
2
3.0.0
2
3.0.1
2
3.3.0-beta4
2
2.7.12
1
2.7.5
1
2.7.7
1
2.7.9
1
2.8.10
1
2.8.11
1
2.8.13
1
2.8.2
1
2.8.4
1
2.8.6
1
2.8.7
1
3.0.2
1
3.2.0-beta4
1
Discourse DiscourseCross-site Scripting (XSS) via chat excerpts when content security policy (CSP) disabled in Discourse
6.5
First published (updated )
Discourse DiscourseDenial of service by the absence of restrictions on replies to posts in Discourse
7.5
First published (updated )
Discourse DiscoursePrevent topic list filtering by hidden tags for unauthorized users in Discourse
5.3
First published (updated )
Discourse DiscourseBypass of email address validation via encoded email addresses in Discourse
8.2
First published (updated )
Discourse DiscourseDiscourse allows iframe injection though default site setting
6.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Discourse DiscourseDiscourse vulnerable to DoS via Tag Group
7.5
First published (updated )
Discourse DiscourseDiscourse has an XSS via Onebox system
6.3
First published (updated )
Discourse DiscourseDiscourse vulnerable to Server-Side Request Forgery via FastImage
6.4
First published (updated )
Discourse DiscourseDiscourse doesn't limit reviewable user serializer payload
4.3
First published (updated )
Discourse DiscourseDiscourse missing authorization checks for suspending admins/moderators
6.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Discourse DiscourseDiscourse vulnerable to stored-dom XSS via Facebook Oneboxes
6.1
First published (updated )
Discourse DiscourseDiscourse improperly sanitized user input leads to XSS
6.3
EPSS
0.05%
First published (updated )
Discourse DiscourseDiscourse secure uploads accessible to guests even when login is required
4.3
First published (updated )
Discourse DiscourseInsufficient control of custom field value sizes
4.3
EPSS
0.04%
First published (updated )
Discourse DiscourseDiscourse vulnerable to unlimited mentioned users in message serializer
8.6
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2023-47121Discourse SSRF vulnerability in Embedding
9.8
First published (updated )
CVE-2023-47120Discourse DoS through Onebox favicon URL
7.5
First published (updated )
CVE-2023-46130Bypassing height value allowed in some theme components
5.4
First published (updated )
CVE-2023-45816Unread bookmark reminder notifications that the user cannot access can be seen
3.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2023-45806Discourse vulnerable to DoS via Regexp Injection in Full Name
5.4
First published (updated )
Discourse DiscourseUnauthenticated access to new private chat messages in Discourse
7.5
First published (updated )
Discourse DiscoursePrevent unauthorized access to summary details in Discourse
5.3
First published (updated )
Discourse DiscourseMalicious requests can fill up the log files resulting in a deinal of service in Discourse
7.5
First published (updated )
Discourse DiscourseExposure of poll options and votes to unauthorized users in Discourse
3.7
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Discourse DiscourseCross-site Scripting via email preview when CSP disabled in Discourse
8
First published (updated )
Discourse DiscourseArbitrary keys can be added to a topic's custom fields by any user in Discourse
4.9
First published (updated )
Discourse DiscourseDiscourse DoS via SvgSprite cache
6.5
First published (updated )
Discourse DiscourseDiscourse DoS via remote theme assets
6.5
First published (updated )
Discourse DiscourseDiscourse DoS via 2FA and Security Key Names
6.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.