CVE-2022-23546

Publication date

2023-01-05 18:10:08

Family

GitHub_M

State

PUBLISHED

Description

In version 2.9.0.beta14 of Discourse, an open-source discussion platform, maliciously embedded urls can leak an admins digest of recent topics, possibly exposing private information. A patch is available for version 2.9.0.beta15. There are no known workarounds for this issue.