Search Results | AttackerKB

Show filters

Clear All

Disclosure Year Disclosure Month

Collection Command and Control Credential Access Defense Evasion Discovery Execution Exfiltration Impact Initial Access Lateral Movement Persistence Privilege Escalation

2 Total Results

Displaying 1-2 of 2

Attacker Value

Unknown

CVE-2020-24327

Disclosure Date: September 23, 2021 (last updated February 23, 2025)

Server Side Request Forgery (SSRF) vulnerability exists in Discourse 2.3.2 and 2.6 via the email function. When writing an email in an editor, you can upload pictures of remote websites.

Attacker Value

Unknown

CVE-2019-15515

Disclosure Date: August 26, 2019 (last updated November 27, 2024)

Discourse 2.3.2 sends the CSRF token in the query string.

2 Total Results

Displaying 1-2 of 2

Unknown

CVE-2020-24327

Unknown

CVE-2019-15515

Quick Cookie Notification