Discourse Vulnerabilidad

Cronología

El año pasado

Versión

3.0	23
2.8.0	20
2.8.1	20
2.8.2	20
2.8.3	18

Contramedidas

Official Fix	129
Temporary Fix	0
Workaround	0
Unavailable	0
Not Defined	7

Explotabilidad

High	0
Functional	0
Proof-of-Concept	0
Unproven	0
Not Defined	136

Vector de acceso

Not Defined	0
Physical	0
Local	1
Adjacent	2
Network	133

Autenticación

Not Defined	0
High	18
Low	70
None	48

La interacción del usuario

Not Defined	0
Required	45
None	91

CVSSv3 Base

≤1	0
≤2	0
≤3	2
≤4	23
≤5	49
≤6	42
≤7	13
≤8	4
≤9	3
≤10	0

CVSSv3 Temp

≤1	0
≤2	0
≤3	3
≤4	22
≤5	49
≤6	43
≤7	12
≤8	4
≤9	3
≤10	0

VulDB

≤1	0
≤2	3
≤3	13
≤4	27
≤5	54
≤6	24
≤7	11
≤8	3
≤9	1
≤10	0

NVD

≤1	0
≤2	0
≤3	0
≤4	2
≤5	13
≤6	20
≤7	13
≤8	9
≤9	3
≤10	3

CNA

≤1	0
≤2	1
≤3	3
≤4	14
≤5	40
≤6	27
≤7	21
≤8	10
≤9	6
≤10	2

Proveedor

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Research

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Explotar día 0

<1k	21
<2k	107
<5k	8
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

Explotar hoy

<1k	136
<2k	0
<5k	0
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

Explotar el volumen del mercado

Affected Versions (104): 0.1, 0.2, 0.3, 0.4, 0.5, 0.6, 0.7, 0.8, 0.9, 1.0, 2.0, 2.1, 2.2, 2.3, 2.3.2, 2.4, 2.4.0.beta1, 2.5, 2.6, 2.7, 2.7.0 beta1, 2.7.1, 2.7.2, 2.7.3, 2.7.4, 2.7.5, 2.7.6, 2.7.7, 2.7.8, 2.7.9, 2.7.11, 2.7.12, 2.8, 2.8.0.beta1, 2.8.0.beta2, 2.8.0.beta3, 2.8.0.beta4, 2.8.0.beta6, 2.8.0.beta9, 2.8.1, 2.8.2, 2.8.3, 2.8.4, 2.8.5, 2.8.6, 2.8.7, 2.8.8, 2.8.9, 2.8.11, 2.8.12, 2.8.13, 2.9.0.beta, 2.9.0.beta.1, 2.9.0.beta.2, 2.9.0.beta.3, 2.9.0.beta.4, 2.9.0.beta.5, 2.9.0.beta.6, 2.9.0.beta.7, 2.9.0.beta.8, 2.9.0.beta.9, 2.9.0.beta.11, 2.9.0.beta.12, 2.9.0.beta1, 2.9.0.beta3, 2.9.0.beta4, 2.9.0.beta9, 2.9.0.beta11, 2.9.0.beta12, 2.9.0.beta13, 2.9.0.beta14, 2.9.0.beta15, 3, 3.0, 3.0.0.beta14, 3.0.0.beta15, 3.0.1, 3.0.2, 3.0.3, 3.0.4, 3.0.5, 3.1, 3.1.0.beta1, 3.1.0.beta2, 3.1.0.beta3, 3.1.0.beta4, 3.1.0.beta6, 3.1.1, 3.1.2, 3.1.3, 3.1.4, 3.2, 3.2.0.beta1, 3.2.0.beta2, 3.2.0.beta3, 3.2.0.beta4, 3.3, 3.3.0.beta1, 3.3.1, 3.3.2, 3.3.3, 3.3.4, 3.3.5, 3.3.6

Tipo de software: JavaScript Library

Fecha de publicación	Base	Temp	Vulnerabilidad	0day	Hoy	Exp	Con	CTI	CVE
2024-04-15	4.3	4.2	discourse-reactions divulgación de información	$0-$5k	$0-$5k	Not Defined	Official Fix	0.04	CVE-2024-31219
2024-03-15	5.3	5.3	Discourse Subcategory divulgación de información	$0-$5k	$0-$5k	Not Defined	Not Defined	0.08	CVE-2024-24748
2024-03-15	5.3	5.3	Discourse Category divulgación de información	$0-$5k	$0-$5k	Not Defined	Not Defined	0.04	CVE-2024-28242
2024-03-15	6.5	6.5	Discourse Invite Route denegación de servicio	$0-$5k	$0-$5k	Not Defined	Not Defined	0.04	CVE-2024-27085
2024-03-15	5.3	5.2	Discourse uploads denegación de servicio	$0-$5k	$0-$5k	Not Defined	Official Fix	0.06	CVE-2024-24827
2024-03-15	6.5	6.5	Discourse CSV Export denegación de servicio	$0-$5k	$0-$5k	Not Defined	Not Defined	0.04	CVE-2024-27100
2024-02-22	4.3	4.2	Discourse discourse-calendar Event Invite divulgación de información	$0-$5k	$0-$5k	Not Defined	Official Fix	0.05	CVE-2024-24817
2024-02-21	3.4	3.3	discourse-ai escalada de privilegios	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2024-23654
2024-02-21	5.4	5.3	Discourse discourse-calendar Private Event escalada de privilegios	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2024-26145
2024-02-21	8.5	8.3	discourse-microsoft-auth microsoft_auth:revoke escalada de privilegios	$0-$5k	$0-$5k	Not Defined	Official Fix	0.02	CVE-2023-46241
2024-02-02	4.6	4.6	discourse-group-membership-ip-block divulgación de información	$0-$5k	$0-$5k	Not Defined	Official Fix	0.02	CVE-2024-24755
2024-01-31	5.3	5.3	Discourse cross site scripting	$0-$5k	$0-$5k	Not Defined	Official Fix	0.02	CVE-2024-23834
2024-01-12	3.9	3.8	discourse-reactions Notifications escalada de privilegios	$0-$5k	$0-$5k	Not Defined	Official Fix	0.03	CVE-2023-49098
2024-01-12	4.2	4.2	Discourse Secure Upload URL escalada de privilegios	$0-$5k	$0-$5k	Not Defined	Official Fix	0.02	CVE-2023-49099
2024-01-12	7.1	7.1	Discourse Message Serializer denegación de servicio	$0-$5k	$0-$5k	Not Defined	Official Fix	0.02	CVE-2023-48297
2024-01-12	4.3	4.2	Discourse denegación de servicio	$0-$5k	$0-$5k	Not Defined	Official Fix	0.04	CVE-2024-21655
2023-11-10	6.5	6.4	Discourse Embedding escalada de privilegios	$0-$5k	$0-$5k	Not Defined	Official Fix	0.02	CVE-2023-47121
2023-11-10	6.4	6.3	Discourse Favicon URL denegación de servicio	$0-$5k	$0-$5k	Not Defined	Official Fix	0.03	CVE-2023-47120
2023-11-10	5.2	5.2	Discourse cross site scripting	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2023-47119
2023-11-10	4.7	4.6	Discourse Quote denegación de servicio	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2023-45806
2023-11-10	3.3	3.2	Discourse Bookmark Reminder divulgación de información	$0-$5k	$0-$5k	Not Defined	Official Fix	0.05	CVE-2023-45816
2023-11-10	4.7	4.6	Discourse Theme denegación de servicio	$0-$5k	$0-$5k	Not Defined	Official Fix	0.02	CVE-2023-46130
2023-10-17	5.6	5.6	Discourse Digest Email Preview UI cross site scripting	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2023-43659
2023-10-17	4.3	4.3	Discourse escalada de privilegios	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2023-45147
2023-10-17	6.4	6.3	Discourse POST Request divulgación de información	$0-$5k	$0-$5k	Not Defined	Official Fix	0.03	CVE-2023-45131

111 no se muestran más entradas

🔒 Login Required

You need to signup and login to see more of the remaining 111 results.

◂ AnteriorVisión De ConjuntoPróximo ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!

Discourse Vulnerabilidad

Cronología

El año pasado

Versión

Contramedidas

Explotabilidad

Vector de acceso

Autenticación

La interacción del usuario

C3BM Index

El año pasado

CVSSv3 Base

CVSSv3 Temp

VulDB

NVD

CNA

Proveedor

Research

Explotar día 0

Explotar hoy

Explotar el volumen del mercado

El año pasado

🔴 CTI Ocupaciones

🔒 Login Required

Want to stay up to date on a daily basis?