Krzysztof Kotlarek

6 exploits Active since Oct 2021
CVE-2023-47121 WRITEUP LOW WRITEUP
Discourse < 3.1.3 and < 3.2.0.beta3 - Server-Side Request Forgery via Embedding Feature
Discourse is an open source platform for community discussion. Prior to version 3.1.3 of the `stable` branch and version 3.2.0.beta3 of the `beta` and `tests-passed` branches, the embedding feature is susceptible to server side request forgery. The issue is patched in version 3.1.3 of the `stable` branch and version 3.2.0.beta3 of the `beta` and `tests-passed` branches. As a workaround, disable the Embedding feature.
CVSS 3.4
CVE-2021-41140 WRITEUP MEDIUM WRITEUP
Discourse-reactions <0.2 - Info Disclosure
Discourse-reactions is a plugin for the Discourse platform that allows user to add their reactions to the post. In affected versions reactions given by user to secure topics and private messages are visible. This issue is patched in version 0.2 of discourse-reaction. Users who are unable to update are advised to disable the Discourse-reactions plugin in admin panel.
CVSS 5.3
CVE-2022-23641 WRITEUP MEDIUM WRITEUP
Discourse < 2.8.1 - Denial of Service via Streaming URL Onebox Parsing
Discourse is an open source discussion platform. In versions prior to 2.8.1 in the `stable` branch, 2.9.0.beta2 in the `beta` branch, and 2.9.0.beta2 in the `tests-passed` branch, users can trigger a Denial of Service attack by posting a streaming URL. Parsing Oneboxes in the background job trigger an infinite loop, which cause memory leaks. This issue is patched in version 2.8.1 of the `stable` branch, 2.9.0.beta2 of the `beta` branch, and 2.9.0.beta2 of the `tests-passed` branch. As a workaround, disable onebox in admin panel completely or specify allow list of domains that will be oneboxed.
CVSS 6.5
CVE-2023-36818 WRITEUP MEDIUM WRITEUP
Discourse - Denial of Service via Custom Sidebar Section Update
Discourse is an open source discussion platform. In affected versions a request to create or update custom sidebar section can cause a denial of service. This issue has been patched in commit `52b003d915`. Users are advised to upgrade. There are no known workarounds for this vulnerability.
CVSS 6.5
CVE-2023-47121 WRITEUP LOW WRITEUP
Discourse < 3.1.3 and < 3.2.0.beta3 - Server-Side Request Forgery via Embedding Feature
Discourse is an open source platform for community discussion. Prior to version 3.1.3 of the `stable` branch and version 3.2.0.beta3 of the `beta` and `tests-passed` branches, the embedding feature is susceptible to server side request forgery. The issue is patched in version 3.1.3 of the `stable` branch and version 3.2.0.beta3 of the `beta` and `tests-passed` branches. As a workaround, disable the Embedding feature.
CVSS 3.4
CVE-2025-46824 WRITEUP LOW WRITEUP
Discourse Code Review Plugin <eed3a80 - XSS
The Discourse Code Review Plugin allows users to review GitHub commits on Discourse. Prior to commit eed3a80, an attacker can execute arbitrary JavaScript on users' browsers by posting links to malicious GitHub commits. This problem is patched in commit eed3a80 of the discourse-code-review plugin. As a workaround, one may disable the plugin.
CVSS 3.1