CVE-2026-33074 in Discourseinformação

Sumário (Inglês)

Discourse is an open-source discussion platform. From versions 2026.1.0-latest to before 2026.1.3, 2026.2.0-latest to before 2026.2.2, and 2026.3.0-latest to before 2026.3.0, a user may be able to purchase a lower tier subscription but grant themselves the benefits that comes along with a higher tier subscription. This issue has been patched in versions 2026.1.3, 2026.2.2, and 2026.3.0.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Responsável

GitHub_M

Reservar

17/03/2026

Divulgação

31/03/2026

Estado

Confirmado

Inscrições

VulDB provides additional information and datapoints for this CVE:

IDVulnerabilidadeCWEExpConCVE
354476Discourse Elevação de Privilégios269Não definidoCorreção oficialCVE-2026-33074

Descrição

CPE

CWE

CVSS

Explorações

História

Diferença

Relacionar

Inteligência de ameaças

API JSON

API XML

API CSV

Fontes

VoltarVisão GeralPróximo

Interested in the pricing of exploits?

See the underground prices here!