CVE-2023-36466
14.07.2023, 22:15
Discourse is an open source discussion platform. When editing a topic, there is a vulnerability that enables a user to bypass the topic title validations for things like title length, number of emojis in title and blank topic titles. The issue is patched in the latest stable, beta and tests-passed version of Discourse.Enginsight
| Vendor | Product | Version |
|---|---|---|
| discourse | discourse | 𝑥 < 3.0.5 |
| discourse | discourse | 1.1.0:beta1 |
| discourse | discourse | 1.1.0:beta2 |
| discourse | discourse | 1.1.0:beta3 |
| discourse | discourse | 1.1.0:beta4 |
| discourse | discourse | 1.1.0:beta5 |
| discourse | discourse | 1.1.0:beta6 |
| discourse | discourse | 1.1.0:beta6b |
| discourse | discourse | 1.1.0:beta7 |
| discourse | discourse | 1.1.0:beta8 |
| discourse | discourse | 1.2.0:beta1 |
| discourse | discourse | 1.2.0:beta2 |
| discourse | discourse | 1.2.0:beta3 |
| discourse | discourse | 1.2.0:beta4 |
| discourse | discourse | 1.2.0:beta5 |
| discourse | discourse | 1.2.0:beta6 |
| discourse | discourse | 1.2.0:beta7 |
| discourse | discourse | 1.2.0:beta8 |
| discourse | discourse | 1.2.0:beta9 |
| discourse | discourse | 1.3.0:beta1 |
| discourse | discourse | 1.3.0:beta10 |
| discourse | discourse | 1.3.0:beta11 |
| discourse | discourse | 1.3.0:beta2 |
| discourse | discourse | 1.3.0:beta3 |
| discourse | discourse | 1.3.0:beta4 |
| discourse | discourse | 1.3.0:beta5 |
| discourse | discourse | 1.3.0:beta6 |
| discourse | discourse | 1.3.0:beta7 |
| discourse | discourse | 1.3.0:beta8 |
| discourse | discourse | 1.3.0:beta9 |
| discourse | discourse | 1.4.0:beta1 |
| discourse | discourse | 1.4.0:beta10 |
| discourse | discourse | 1.4.0:beta11 |
| discourse | discourse | 1.4.0:beta12 |
| discourse | discourse | 1.4.0:beta2 |
| discourse | discourse | 1.4.0:beta3 |
| discourse | discourse | 1.4.0:beta4 |
| discourse | discourse | 1.4.0:beta5 |
| discourse | discourse | 1.4.0:beta6 |
| discourse | discourse | 1.4.0:beta7 |
| discourse | discourse | 1.4.0:beta8 |
| discourse | discourse | 1.4.0:beta9 |
| discourse | discourse | 1.5.0:beta1 |
| discourse | discourse | 1.5.0:beta10 |
| discourse | discourse | 1.5.0:beta11 |
| discourse | discourse | 1.5.0:beta12 |
| discourse | discourse | 1.5.0:beta13 |
| discourse | discourse | 1.5.0:beta13b |
| discourse | discourse | 1.5.0:beta14 |
| discourse | discourse | 1.5.0:beta2 |
| discourse | discourse | 1.5.0:beta3 |
| discourse | discourse | 1.5.0:beta4 |
| discourse | discourse | 1.5.0:beta5 |
| discourse | discourse | 1.5.0:beta6 |
| discourse | discourse | 1.5.0:beta7 |
| discourse | discourse | 1.5.0:beta8 |
| discourse | discourse | 1.5.0:beta9 |
| discourse | discourse | 1.6.0:beta1 |
| discourse | discourse | 1.6.0:beta10 |
| discourse | discourse | 1.6.0:beta11 |
| discourse | discourse | 1.6.0:beta12 |
| discourse | discourse | 1.6.0:beta2 |
| discourse | discourse | 1.6.0:beta3 |
| discourse | discourse | 1.6.0:beta4 |
| discourse | discourse | 1.6.0:beta5 |
| discourse | discourse | 1.6.0:beta6 |
| discourse | discourse | 1.6.0:beta7 |
| discourse | discourse | 1.6.0:beta8 |
| discourse | discourse | 1.6.0:beta9 |
| discourse | discourse | 1.7.0:beta1 |
| discourse | discourse | 1.7.0:beta10 |
| discourse | discourse | 1.7.0:beta11 |
| discourse | discourse | 1.7.0:beta2 |
| discourse | discourse | 1.7.0:beta3 |
| discourse | discourse | 1.7.0:beta4 |
| discourse | discourse | 1.7.0:beta5 |
| discourse | discourse | 1.7.0:beta6 |
| discourse | discourse | 1.7.0:beta7 |
| discourse | discourse | 1.7.0:beta8 |
| discourse | discourse | 1.7.0:beta9 |
| discourse | discourse | 1.8.0:beta1 |
| discourse | discourse | 1.8.0:beta10 |
| discourse | discourse | 1.8.0:beta11 |
| discourse | discourse | 1.8.0:beta12 |
| discourse | discourse | 1.8.0:beta13 |
| discourse | discourse | 1.8.0:beta2 |
| discourse | discourse | 1.8.0:beta3 |
| discourse | discourse | 1.8.0:beta4 |
| discourse | discourse | 1.8.0:beta5 |
| discourse | discourse | 1.8.0:beta6 |
| discourse | discourse | 1.8.0:beta7 |
| discourse | discourse | 1.8.0:beta8 |
| discourse | discourse | 1.8.0:beta9 |
| discourse | discourse | 1.9.0:beta1 |
| discourse | discourse | 1.9.0:beta10 |
| discourse | discourse | 1.9.0:beta11 |
| discourse | discourse | 1.9.0:beta12 |
| discourse | discourse | 1.9.0:beta13 |
| discourse | discourse | 1.9.0:beta14 |
| discourse | discourse | 1.9.0:beta15 |
| discourse | discourse | 1.9.0:beta16 |
| discourse | discourse | 1.9.0:beta17 |
| discourse | discourse | 1.9.0:beta2 |
| discourse | discourse | 1.9.0:beta3 |
| discourse | discourse | 1.9.0:beta4 |
| discourse | discourse | 1.9.0:beta5 |
| discourse | discourse | 1.9.0:beta6 |
| discourse | discourse | 1.9.0:beta7 |
| discourse | discourse | 1.9.0:beta8 |
| discourse | discourse | 1.9.0:beta9 |
| discourse | discourse | 2.0.0:beta1 |
| discourse | discourse | 2.0.0:beta10 |
| discourse | discourse | 2.0.0:beta2 |
| discourse | discourse | 2.0.0:beta3 |
| discourse | discourse | 2.0.0:beta4 |
| discourse | discourse | 2.0.0:beta5 |
| discourse | discourse | 2.0.0:beta6 |
| discourse | discourse | 2.0.0:beta7 |
| discourse | discourse | 2.0.0:beta8 |
| discourse | discourse | 2.0.0:beta9 |
| discourse | discourse | 2.1.0:beta1 |
| discourse | discourse | 2.1.0:beta2 |
| discourse | discourse | 2.1.0:beta3 |
| discourse | discourse | 2.1.0:beta4 |
| discourse | discourse | 2.1.0:beta5 |
| discourse | discourse | 2.1.0:beta6 |
| discourse | discourse | 2.2.0:beta1 |
| discourse | discourse | 2.2.0:beta10 |
| discourse | discourse | 2.2.0:beta2 |
| discourse | discourse | 2.2.0:beta3 |
| discourse | discourse | 2.2.0:beta4 |
| discourse | discourse | 2.2.0:beta5 |
| discourse | discourse | 2.2.0:beta6 |
| discourse | discourse | 2.2.0:beta7 |
| discourse | discourse | 2.2.0:beta8 |
| discourse | discourse | 2.2.0:beta9 |
| discourse | discourse | 2.3.0:beta1 |
| discourse | discourse | 2.3.0:beta10 |
| discourse | discourse | 2.3.0:beta11 |
| discourse | discourse | 2.3.0:beta2 |
| discourse | discourse | 2.3.0:beta3 |
| discourse | discourse | 2.3.0:beta4 |
| discourse | discourse | 2.3.0:beta5 |
| discourse | discourse | 2.3.0:beta6 |
| discourse | discourse | 2.3.0:beta7 |
| discourse | discourse | 2.3.0:beta8 |
| discourse | discourse | 2.3.0:beta9 |
| discourse | discourse | 2.4.0:beta1 |
| discourse | discourse | 2.4.0:beta10 |
| discourse | discourse | 2.4.0:beta11 |
| discourse | discourse | 2.4.0:beta2 |
| discourse | discourse | 2.4.0:beta3 |
| discourse | discourse | 2.4.0:beta4 |
| discourse | discourse | 2.4.0:beta5 |
| discourse | discourse | 2.4.0:beta6 |
| discourse | discourse | 2.4.0:beta7 |
| discourse | discourse | 2.4.0:beta8 |
| discourse | discourse | 2.4.0:beta9 |
| discourse | discourse | 2.5.0:beta1 |
| discourse | discourse | 2.5.0:beta2 |
| discourse | discourse | 2.5.0:beta3 |
| discourse | discourse | 2.5.0:beta4 |
| discourse | discourse | 2.5.0:beta5 |
| discourse | discourse | 2.5.0:beta6 |
| discourse | discourse | 2.5.0:beta7 |
| discourse | discourse | 2.6.0:beta1 |
| discourse | discourse | 2.6.0:beta2 |
| discourse | discourse | 2.6.0:beta3 |
| discourse | discourse | 2.6.0:beta4 |
| discourse | discourse | 2.6.0:beta5 |
| discourse | discourse | 2.6.0:beta6 |
| discourse | discourse | 2.7.0:beta1 |
| discourse | discourse | 2.7.0:beta2 |
| discourse | discourse | 2.7.0:beta3 |
| discourse | discourse | 2.7.0:beta4 |
| discourse | discourse | 2.7.0:beta5 |
| discourse | discourse | 2.7.0:beta6 |
| discourse | discourse | 2.7.0:beta7 |
| discourse | discourse | 2.7.0:beta8 |
| discourse | discourse | 2.7.0:beta9 |
| discourse | discourse | 2.8.0:beta1 |
| discourse | discourse | 2.8.0:beta10 |
| discourse | discourse | 2.8.0:beta11 |
| discourse | discourse | 2.8.0:beta2 |
| discourse | discourse | 2.8.0:beta3 |
| discourse | discourse | 2.8.0:beta4 |
| discourse | discourse | 2.8.0:beta5 |
| discourse | discourse | 2.8.0:beta6 |
| discourse | discourse | 2.8.0:beta7 |
| discourse | discourse | 2.8.0:beta8 |
| discourse | discourse | 2.8.0:beta9 |
| discourse | discourse | 2.9.0:beta1 |
| discourse | discourse | 2.9.0:beta10 |
| discourse | discourse | 2.9.0:beta11 |
| discourse | discourse | 2.9.0:beta12 |
| discourse | discourse | 2.9.0:beta13 |
| discourse | discourse | 2.9.0:beta14 |
| discourse | discourse | 2.9.0:beta2 |
| discourse | discourse | 2.9.0:beta3 |
| discourse | discourse | 2.9.0:beta4 |
| discourse | discourse | 2.9.0:beta5 |
| discourse | discourse | 2.9.0:beta6 |
| discourse | discourse | 2.9.0:beta7 |
| discourse | discourse | 2.9.0:beta8 |
| discourse | discourse | 2.9.0:beta9 |
| discourse | discourse | 3.0.0:beta15 |
| discourse | discourse | 3.0.0:beta16 |
| discourse | discourse | 3.1.0:beta1 |
| discourse | discourse | 3.1.0:beta2 |
| discourse | discourse | 3.1.0:beta5 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration
- CWE-20 - Improper Input ValidationThe product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.
- CWE-287 - Improper AuthenticationWhen an actor claims to have a given identity, the software does not prove or insufficiently proves that the claim is correct.