CVE-2022-39356 - How Discourse's Invitation Bug Let Attackers Hijack User Accounts
Discourse is a popular open-source platform for online discussion forums. Used by thousands of communities worldwide, Discourse has become a go-to solution for building interactive
CVE-2022-39378 - Discourse Badge Leaks Sensitive Topic Titles – A Deep Dive
Discourse is a popular open-source platform for community discussion, powering forums for companies, nonprofits, games, and hobbyists alike. But in late 2022, a privacy vulnerability
CVE-2022-39355 - How Discourse Patreon Integration Led to Account Takeover Vulnerability
If your forum runs on Discourse and uses Patreon for login, you might have been exposed to a critical security issue: CVE-2022-39355. This easy-to-miss vulnerability
Episode
00:00:00
00:00:00