CVE-2024-31219 | discourse-reactions up to 0.4 information disclosure (GHSA-7cqc-5xrw-xh67)

Posted by Angelo Barbosa | Apr 15, 2024 | CVE

A vulnerability was found in discourse-reactions up to 0.4 and classified as problematic. Affected by this issue is some unknown functionality of the file /u/:username/activity/reactions. The manipulation leads to information disclosure.

This vulnerability is handled as CVE-2024-31219. The attack may be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-31219 | discourse-reactions up to 0.4 information disclosure (GHSA-7cqc-5xrw-xh67)

Related Posts

CVE-2024-33586 | 10Web Photo Gallery Plugin up to 1.8.20 on WordPress authorization

CVE-2024-1789 | WP SMTP Plugin 1.2/1.2.6 on WordPress sql injection

CVE-2024-6883 | Event Espresso 4 Decaf Plugin up to 5.0.22.decaf on WordPress Setting authorization

CVE-2024-7153 | Netgear WN604 up to 20240719 siteSurvey.php direct request