CVE-2022-39241
HIGHDiscourse < 2.8.10 - Authenticated Server-Side Request Forgery via Webhook
Title source: llmDescription
Discourse is a platform for community discussion. A malicious admin could use this vulnerability to perform port enumeration on the local host or other hosts on the internal network, as well as against hosts on the Internet. Latest `stable`, `beta`, and `test-passed` versions are now patched. As a workaround, self-hosters can use `DISCOURSE_BLOCKED_IP_BLOCKS` env var (which overrides `blocked_ip_blocks` setting) to stop webhooks from accessing private IPs.
References (1)
Core 1
Core References
Third Party Advisory
https://github.com/discourse/discourse/security/advisories/GHSA-rcc5-28r3-23rr
Scores
CVSS v3
7.6
EPSS
0.0031
EPSS Percentile
54.1%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:L/A:N
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
partial
Details
CWE
CWE-918
Status
published
Products (2)
discourse/discourse
2.9.0 beta1 (10 CPE variants)
discourse/discourse
< 2.8.10
Published
Nov 02, 2022
Tracked Since
Feb 18, 2026