CVE-2024-28242 | Discourse up to 3.2.0/3.3.0.beta1 Category information disclosure

Inserito da Angelo Barbosa | Mar 15, 2024 | CVE

A vulnerability has been found in Discourse up to 3.2.0/3.3.0.beta1 and classified as problematic. Affected by this vulnerability is an unknown functionality of the component Category Handler. The manipulation leads to information disclosure.

This vulnerability is known as CVE-2024-28242. The attack can be launched remotely. There is no exploit available.

CVE-2024-28242 | Discourse up to 3.2.0/3.3.0.beta1 Category information disclosure

Post correlati

CVE-2024-1042 | WP Radio Plugin up to 3.1.9 on WordPress Ajax Action authorization

CVE-2024-5062 | zenml-io zenml up to 0.57.x Survey cross site scripting

CVE-2022-48831 | Linux Kernel up to 5.15.23/5.16.9 ima asymmetric_verify denial of service (0838d6d68182/89f586d3398f/926fd9f23b27)

CVE-2024-0432 | Gestpay for WooCommerce Plugin up to 20221130 on WordPress ajax_delete_card cross-site request forgery