CVE-2022-39241 - Discourse Webhook SSRF Vulnerability Explained — Original Insight, Code, and Mitigation
Discourse is a popular, open-source discussion platform used by thousands of online communities and companies. In September 2022, a critical security vulnerability was published that
CVE-2022-39355 - How Discourse Patreon Integration Led to Account Takeover Vulnerability
If your forum runs on Discourse and uses Patreon for login, you might have been exposed to a critical security issue: CVE-2022-39355. This easy-to-miss vulnerability