Discourse is the an open source discussion platform. In affected versions an email activation route can be abused to send mass spam emails. A fix has been included in the latest stable, beta and tests-passed versions of Discourse which rate limits emails. Users are advised to upgrade. Users unable to upgrade should manually rate limit email.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
discourse discourse 2.9.0 |
||
discourse discourse |