Unrated severityNVD Advisory· Published Jul 3, 2024· Updated Aug 2, 2024

Discourse vulnerable to stored-dom XSS via Facebook Oneboxes

CVE-2024-35234

Description

Discourse is an open-source discussion platform. Prior to version 3.2.3 on the stable branch and version 3.3.0.beta3 on the tests-passed branch, an attacker can execute arbitrary JavaScript on users’ browsers by posting a specific URL containing maliciously crafted meta tags. This issue only affects sites with Content Security Polic (CSP) disabled. The problem has been patched in version 3.2.3 on the stable branch and version 3.3.0.beta3 on the tests-passed branch. As a workaround, ensure CSP is enabled on the forum.

Affected products

Discourse (software)/Discoursev5
Range: stable < 3.2.3

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

github.com/discourse/discourse/commit/26aef0c288839378b9de5819e96eac8cf4ea60fdmitrex_refsource_MISC
github.com/discourse/discourse/commit/311b737c910cf0a69f61e1b8bc0b78374b6619d2mitrex_refsource_MISC
github.com/discourse/discourse/security/advisories/GHSA-5chg-hm8c-wc58mitrex_refsource_CONFIRM

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000