PT-2023-19958 · Discourse · Discourse
Highjomaxro
·
Published
2023-03-17
·
Updated
2024-03-06
·
CVE-2023-25172
CVSS v3.1
4.4
Medium
| Vector | AV:N/AC:H/PR:L/UI:R/S:C/C:L/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
Discourse versions prior to 3.0.1 of the
stable branch
Discourse versions prior to 3.1.0.beta2 of the beta and tests-passed branchesDescription
Discourse is an open-source discussion platform. A maliciously crafted URL can be included in a user's full name field to carry out cross-site scripting attacks on sites with a disabled or overly permissive Content Security Policy (CSP). Discourse's default CSP prevents this issue.
Recommendations
For versions prior to 3.0.1 of the
stable branch, update to version 3.0.1 or later.
For versions prior to 3.1.0.beta2 of the beta and tests-passed branches, update to version 3.1.0.beta2 or later.
As a temporary workaround, enable and/or restore your site's CSP to the default one provided with Discourse.Exploit
Fix
XSS
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Discourse