Unrated severityNVD Advisory· Published Mar 17, 2023· Updated Feb 25, 2025
Discourse's SSRF protection missing for some FastImage requests
CVE-2023-28112
Description
Discourse is an open-source discussion platform. Prior to version 3.1.0.beta3 of the beta and tests-passed branches, some user provided URLs were being passed to FastImage without SSRF protection. Insufficient protections could enable attackers to trigger outbound network connections from the Discourse server to private IP addresses. This affects any site running the tests-passed or beta branches versions 3.1.0.beta2 and prior. This issue is patched in version 3.1.0.beta3 of the beta and tests-passed branches. There are no known workarounds.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3<=3.1.0.beta2+ 1 more
- (no CPE)range: <=3.1.0.beta2
- (no CPE)range: beta < 3.1.0.beta3
Patches
Vulnerability mechanics
References
3- github.com/discourse/discourse/commit/39c2f63b35d90ebaf67b9604cf1d424e5984203cmitrex_refsource_MISC
- github.com/discourse/discourse/pull/20710mitrex_refsource_MISC
- github.com/discourse/discourse/security/advisories/GHSA-9897-x229-55ghmitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.