CVE-2026-33422 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

Discourse is an open-source discussion platform. Prior to versions 2026.3.0-latest.1, 2026.2.1, and 2026.1.2, the `ip_address` of a flagged user is exposed to…
Low CVSS: 3.5

CVE-2026-33422

Discourse is an open-source discussion platform. Prior to versions 2026.3.0-latest.1, 2026.2.1, and 2026.1.2, the `ip_address` of a flagged user is exposed to any user who can access the review queue, including users who should not be able to see IP addresses. Versions 2026.3.0-latest.1, 2026.2.1, and 2026.1.2 contain a patch. No known workarounds are available.
Vendor
Discourse
Product
Discourse
CWE
CWE-200
Yayın Tarihi
2026-03-20 23:16:47
Güncelleme
2026-03-24 21:11:46
Source Identifier
security-advisories@github.com
KEV Date Added
-

Kategoriler

CWE-200 Discourse LOW Discourse 2026

Referanslar

https://github.com/discourse/discourse/security/advisories/GHSA-x32r-45vg-vm84