Unrated severityNVD Advisory· Published Jul 3, 2024· Updated Aug 2, 2024
Discourse vulnerable to stored-dom XSS via Facebook Oneboxes
CVE-2024-35234
Description
Discourse is an open-source discussion platform. Prior to version 3.2.3 on the stable branch and version 3.3.0.beta3 on the tests-passed branch, an attacker can execute arbitrary JavaScript on users’ browsers by posting a specific URL containing maliciously crafted meta tags. This issue only affects sites with Content Security Polic (CSP) disabled. The problem has been patched in version 3.2.3 on the stable branch and version 3.3.0.beta3 on the tests-passed branch. As a workaround, ensure CSP is enabled on the forum.
Affected products
3<3.2.3 (stable) and <3.3.0.beta3 (tests-passed)+ 1 more
- (no CPE)range: <3.2.3 (stable) and <3.3.0.beta3 (tests-passed)
- (no CPE)range: stable < 3.2.3
Patches
Vulnerability mechanics
References
3- github.com/discourse/discourse/commit/26aef0c288839378b9de5819e96eac8cf4ea60fdmitrex_refsource_MISC
- github.com/discourse/discourse/commit/311b737c910cf0a69f61e1b8bc0b78374b6619d2mitrex_refsource_MISC
- github.com/discourse/discourse/security/advisories/GHSA-5chg-hm8c-wc58mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.