HomePentest-Tools.com Logo

Discourse 3.1.x < 3.1.0.beta5 Multiple Vulnerabilities CVE-2023-31142CVE-2023-32061CVE-2023-34250

Severity
CVSSv3 Score
5.3
Vulnerability description

Discourse is prone to multiple vulnerabilities

Risk description

The following vulnerabilities exist: - CVE-2023-31142: General category permissions could be set back to default - CVE-2023-32061: Topic creation page allows iFrame tag without restrictions - CVE-2023-34250: Exposure of number of topics recently created in private categories

Recommendation

Update to version 3.1.0.beta5 or later.

Codename
Not available
Detectable with
Network Scanner
Scan engine
OpenVAS
Exploitable with Sniper
No
CVE Published
Jun 13, 2023
Detection added at
Software Type
Not available
Vendor
Not available
Product
Not available