CVE-2024-23834 | Discourse up to 3.1.4/3.2.0.beta4 cross site scripting (GHSA-rj3g-8q6p-63pc)

Posted by Angelo Barbosa | Jan 31, 2024 | CVE

A vulnerability has been found in Discourse up to 3.1.4/3.2.0.beta4 and classified as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to cross site scripting.

This vulnerability is known as CVE-2024-23834. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-23834 | Discourse up to 3.1.4/3.2.0.beta4 cross site scripting (GHSA-rj3g-8q6p-63pc)

Related Posts

CVE-2024-1640 | bitpressadmin Contact Form Builder Plugin up to 2.10.1 on WordPress bitforms_update_form_entry authorization

CVE-2024-20027 | MediaTek MT8512 Da out-of-bounds write (ALPS08541632)

CVE-2024-1182 | Mitsubishi Electric ICONICS/AlarmWorX Multimedia/MobileHMI AlarmWorX64 MMX Page Agent uncontrolled search path (icsa-24-184-03)

CVE-2024-1168 | SEOPress Plugin up to 7.9 on WordPress Social Image URL cross site scripting