Filters
Versions
2.9.0-beta1
32
2.9.0-beta2
32
2.9.0-beta3
32
2.9.0-beta4
29
2.9.0-beta5
28
2.9.0-beta7
28
2.9.0-beta6
27
2.9.0-beta8
27
3.1.0-beta1
26
2.8.0-beta1
25
2.8.0-beta2
25
2.8.0-beta3
25
2.8.0-beta4
25
2.9.0-beta10
24
2.8.0-beta5
23
2.8.0-beta6
23
2.9.0-beta11
23
2.9.0-beta12
23
2.8.0-beta7
22
2.9.0-beta13
21
2.9.0-beta9
21
2.8.0-beta8
20
2.8.0-beta9
20
2.9.0-beta14
20
3.1.0-beta2
20
2.8.0-beta10
19
3.0.0-beta15
18
2.4.0-beta1
17
2.4.0-beta2
17
1.1.0-beta1
16
1.1.0-beta2
16
1.1.0-beta3
16
1.1.0-beta4
16
1.1.0-beta5
16
1.1.0-beta6
16
1.1.0-beta6b
16
1.1.0-beta7
16
1.1.0-beta8
16
1.2.0-beta1
16
1.2.0-beta2
16
1.2.0-beta3
16
1.2.0-beta4
16
1.2.0-beta5
16
1.2.0-beta6
16
1.2.0-beta7
16
1.2.0-beta8
16
1.2.0-beta9
16
1.3.0-beta1
16
1.3.0-beta10
16
1.3.0-beta11
16
1.3.0-beta2
16
1.3.0-beta3
16
1.3.0-beta4
16
1.3.0-beta5
16
1.3.0-beta6
16
1.3.0-beta7
16
1.3.0-beta8
16
1.3.0-beta9
16
1.4.0-beta1
16
1.4.0-beta10
16
1.4.0-beta11
16
1.4.0-beta12
16
1.4.0-beta2
16
1.4.0-beta3
16
1.4.0-beta4
16
1.4.0-beta5
16
1.4.0-beta6
16
1.4.0-beta7
16
1.4.0-beta8
16
1.4.0-beta9
16
1.5.0-beta1
16
1.5.0-beta10
16
1.5.0-beta11
16
1.5.0-beta12
16
1.5.0-beta13
16
1.5.0-beta13b
16
1.5.0-beta14
16
1.5.0-beta2
16
1.5.0-beta3
16
1.5.0-beta4
16
1.5.0-beta5
16
1.5.0-beta6
16
1.5.0-beta7
16
1.5.0-beta8
16
1.5.0-beta9
16
1.6.0-beta1
16
1.6.0-beta10
16
1.6.0-beta11
16
1.6.0-beta12
16
1.6.0-beta2
16
1.6.0-beta3
16
1.6.0-beta4
16
1.6.0-beta5
16
1.6.0-beta6
16
1.6.0-beta7
16
1.6.0-beta8
16
1.6.0-beta9
16
1.7.0-beta1
16
1.7.0-beta10
16
1.7.0-beta11
16
1.7.0-beta2
16
1.7.0-beta3
16
1.7.0-beta4
16
1.7.0-beta5
16
1.7.0-beta6
16
1.7.0-beta7
16
1.7.0-beta8
16
1.7.0-beta9
16
1.8.0-beta1
16
1.8.0-beta10
16
1.8.0-beta11
16
1.8.0-beta12
16
1.8.0-beta13
16
1.8.0-beta2
16
1.8.0-beta3
16
1.8.0-beta4
16
1.8.0-beta5
16
1.8.0-beta6
16
1.8.0-beta7
16
1.8.0-beta8
16
1.8.0-beta9
16
1.9.0-beta1
16
1.9.0-beta10
16
1.9.0-beta11
16
1.9.0-beta12
16
1.9.0-beta13
16
1.9.0-beta14
16
1.9.0-beta15
16
1.9.0-beta16
16
1.9.0-beta17
16
1.9.0-beta2
16
1.9.0-beta3
16
1.9.0-beta4
16
1.9.0-beta5
16
1.9.0-beta6
16
1.9.0-beta7
16
1.9.0-beta8
16
1.9.0-beta9
16
2.0.0-beta1
16
2.0.0-beta10
16
2.0.0-beta2
16
2.0.0-beta3
16
2.0.0-beta4
16
2.0.0-beta5
16
2.0.0-beta6
16
2.0.0-beta7
16
2.0.0-beta8
16
2.0.0-beta9
16
2.1.0-beta1
16
2.1.0-beta2
16
2.1.0-beta3
16
2.1.0-beta4
16
2.1.0-beta5
16
2.1.0-beta6
16
2.2.0-beta1
16
2.2.0-beta10
16
2.2.0-beta2
16
2.2.0-beta3
16
2.2.0-beta4
16
2.2.0-beta5
16
2.2.0-beta6
16
2.2.0-beta7
16
2.2.0-beta8
16
2.2.0-beta9
16
2.3.0-beta1
16
2.3.0-beta10
16
2.3.0-beta11
16
2.3.0-beta2
16
2.3.0-beta3
16
2.3.0-beta4
16
2.3.0-beta5
16
2.3.0-beta6
16
2.3.0-beta7
16
2.3.0-beta8
16
2.3.0-beta9
16
2.4.0-beta10
16
2.4.0-beta11
16
2.4.0-beta3
16
2.4.0-beta4
16
2.4.0-beta5
16
2.4.0-beta6
16
2.4.0-beta7
16
2.4.0-beta8
16
2.4.0-beta9
16
2.5.0-beta1
16
2.5.0-beta2
16
2.5.0-beta3
16
2.5.0-beta4
16
2.5.0-beta5
16
2.5.0-beta6
16
2.5.0-beta7
16
2.6.0-beta1
16
2.6.0-beta2
16
2.6.0-beta3
16
2.6.0-beta4
16
2.6.0-beta5
16
2.6.0-beta6
16
2.7.0-beta1
16
2.7.0-beta2
16
2.7.0-beta3
16
2.7.0-beta4
16
2.7.0-beta5
16
2.7.0-beta6
16
2.7.0-beta7
16
2.7.0-beta8
16
2.7.0-beta9
16
2.8.0-beta11
16
3.0.0-beta16
14
3.1.0-beta3
14
3.1.0-beta5
10
3.1.0-beta6
8
3.2.0-beta1
8
3.2.0-beta2
6
3.3.0-beta1
6
3.3.0-beta2
6
3.1.0-beta4
4
3.1.0-beta7
4
3.1.0-beta8
4
3.2.0-beta3
3
3.3.0-beta3
3
2.3.2
2
3.0.1
2
3.1.1
2
3.4.0
2
3.4.0-beta1
2
2.6.0
1
2.7.12
1
2.7.7
1
2.7.9
1
2.8.11
1
2.8.13
1
2.8.2
1
2.8.4
1
3.0.2
1
3.1.0
1
3.2.0-beta4
1
3.3.0-beta4
1
Discourse DiscourseCross-site Scripting (XSS) via chat excerpts when content security policy (CSP) disabled in Discourse
6.5
First published (updated )
Discourse DiscoursePrevent topic list filtering by hidden tags for unauthorized users in Discourse
5.3
First published (updated )
Discourse DiscourseDiscourse allows iframe injection though default site setting
6.1
First published (updated )
Discourse DiscourseDiscourse has an XSS via Onebox system
6.3
First published (updated )
Discourse DiscourseDiscourse vulnerable to Server-Side Request Forgery via FastImage
6.4
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Discourse DiscourseDiscourse doesn't limit reviewable user serializer payload
4.3
First published (updated )
Discourse DiscourseDiscourse missing authorization checks for suspending admins/moderators
6.5
First published (updated )
Discourse DiscourseDiscourse vulnerable to stored-dom XSS via Facebook Oneboxes
6.1
First published (updated )
Discourse DiscourseDiscourse improperly sanitized user input leads to XSS
6.3
EPSS
0.05%
First published (updated )
Discourse DiscourseDiscourse secure uploads accessible to guests even when login is required
4.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Discourse DiscourseInsufficient control of custom field value sizes
4.3
EPSS
0.04%
First published (updated )
Discourse DiscourseHTML injection in oneboxed links
6.1
First published (updated )
Discourse DiscourseBypassing height value allowed in some theme components
5.4
First published (updated )
Discourse DiscourseDiscourse vulnerable to DoS via Regexp Injection in Full Name
5.4
First published (updated )
Discourse DiscoursePrevent unauthorized access to summary details in Discourse
5.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Discourse DiscourseArbitrary keys can be added to a topic's custom fields by any user in Discourse
4.9
First published (updated )
Discourse DiscourseDiscourse DoS via SvgSprite cache
6.5
First published (updated )
Discourse DiscourseDiscourse DoS via remote theme assets
6.5
First published (updated )
Discourse DiscourseDiscourse DoS via 2FA and Security Key Names
6.5
First published (updated )
Discourse DiscourseDiscourse vulnerable to DoS via drafts
6.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Discourse DiscourseDiscourse's restricted tag information visible to unauthenticated users
4.3
First published (updated )
Discourse DiscourseDiscourse vulnerable to DoS via defer queue
6.5
EPSS
0.04%
First published (updated )
Discourse DiscourseDiscourse vulnerable to DoS via post edit reason
4.3
EPSS
0.04%
First published (updated )
Discourse DiscourseDiscourse CSP nonce reuse vulnerability for anonymous users
6.8
First published (updated )
Discourse DiscourseTopic Title Validation Skipped When Changing Category in Discourse
4.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Discourse DiscourseCSP nonce reuse vulnerability in Discourse
6.8
First published (updated )
Discourse DiscourseDiscourse is an open source discussion platform. Prior to version 3.0.4 of the `stable` branch and v…
5.3
First published (updated )
Discourse DiscourseDiscourse Topic Creation Page Allows iFrame Tag without Restrictions
5.4
First published (updated )
Discourse DiscourseDiscourse's general category permissions could be set back to default
5.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Discourse DiscourseMultisite denial of service through unsanitized dynamic dispatch to SiteSetting in Discourse
4.9
First published (updated )
Discourse DiscourseStored Cross-site Scripting via improper sanitization of svg files in Discourse
5.4
First published (updated )
Discourse DiscourseDiscourse is an open-source discussion platform. Prior to version 3.0.2 of the `stable` branch and v…
4.9
First published (updated )
Discourse DiscourseDiscourse vulnerable to Cross-site Scripting - user name displayed on post
5.4
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Discourse DiscoursePresence of restricted personal Discourse messages may be leaked if tagged with a tag
4.3
First published (updated )
Discourse DiscourseDiscourse tags with no visibility are leaking into og:article:tag
5.3
First published (updated )
Discourse DiscourseRegular expression denial of service via installing themes via git in discourse
6.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Discourse DiscourseCVE-2023-23615
First published (updated )
Discourse DiscourseDiscourse is an open-source discussion platform. Prior to version 3.0.1 on the `stable` branch and 3…
4.3
First published (updated )
Discourse DiscourseCVE-2023-22740
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Discourse DiscourseDiscourse vulnerable to Cross-site Scripting through tag descriptions
6.8
First published (updated )
Discourse DiscourseDiscourse vulnerable to exposure of user post counts per topic to unauthorized users
5.3
First published (updated )
Discourse DiscourseDiscourse vulnerable to private topic leak via email#send_digest
5.5
First published (updated )
Discourse DiscourseDiscourse is an option source discussion platform. Prior to version 2.8.14 on the `stable` branch an…
6.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.