A vulnerability was found in discourse-reactions up to 0.4 and classified as problematic. Affected by this issue is some unknown functionality of the file /u/:username/activity/reactions. The manipulation leads to information disclosure.
This vulnerability is handled as CVE-2024-31219. The attack may be launched remotely. There is no exploit available.
It is recommended to upgrade the affected component.