CVE-2025-53102 | Discourse up to 3.4.6/3.5.0.beta.7 session fixiation (GHSA-hv49-93h5-4wcv)

Inserito da Angelo Barbosa | Lug 29, 2025 | CVE

A vulnerability classified as critical has been found in Discourse up to 3.4.6/3.5.0.beta.7. Affected is an unknown function. The manipulation leads to session fixiation.

This vulnerability is traded as CVE-2025-53102. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-53102 | Discourse up to 3.4.6/3.5.0.beta.7 session fixiation (GHSA-hv49-93h5-4wcv)

Post correlati

CVE-2024-9333 | M-Files Connector for Copilot up to 24.9.2 Access Control List permissions

CVE-2025-8393 | Dreame Dreamehome App/MOVAhome App certificate validation (icsa-25-219-06)

CVE-2024-53820 | Captivate Audio Captivate Sync Plugin up to 2.0.22 on WordPress cross site scripting

CVE-2025-1744 | Radare2 up to 5.9.8 out-of-bounds write