CVE-2024-47773 | Discourse up to 3.3.1/3.4.0.beta1 DISCOURSE_DISABLE_ANON_CACHE external reference (GHSA-58vv-9j8h-hw2v)

Inserito da Angelo Barbosa | Ott 8, 2024 | CVE

A vulnerability has been found in Discourse up to 3.3.1/3.4.0.beta1 and classified as critical. Affected by this vulnerability is an unknown functionality. The manipulation of the argument DISCOURSE_DISABLE_ANON_CACHE leads to externally controlled reference.

This vulnerability is known as CVE-2024-47773. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-47773 | Discourse up to 3.3.1/3.4.0.beta1 DISCOURSE_DISABLE_ANON_CACHE external reference (GHSA-58vv-9j8h-hw2v)

Post correlati

CVE-2024-33972 | Janobe School Attendance Monitoring System 1.0 /report/event_print.php events sql injection

CVE-2024-6843 | Chatbot with ChatGPT Plugin up to 2.4.4 on WordPress cross site scripting

CVE-2024-32813 | SoftLab Integrate Google Drive Plugin up to 1.3.9 on WordPress authorization

CVE-2024-24844 | PowerPack Pro for Elementor Plugin up to 2.10.6 on WordPress Setting authorization