CVE-2024-45051 - Discourse Email Domain Spoofing Vulnerability

1 month ago 19
ARTICLE AD BOX
CVE ID : CVE-2024-45051
Published : Oct. 7, 2024, 9:15 p.m. | 24 minutes ago
Description : Discourse is an open source platform for community discussion. A maliciously crafted email address could allow an attacker to bypass domain-based restrictions and gain access to private sites, categories and/or groups. This issue has been patched in the latest stable, beta and tests-passed version of Discourse. All users area are advised to upgrade. There are no known workarounds for this vulnerability.
Severity: 8.2 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
Read Entire Article