CVE-2022-37458

discourse/discourse

on github

Published

September 2, 2022

Severity

CVSS v3:

7.2 HIGH

CVSS v2:

N/A

Description

Discourse through 2.8.7 allows admins to send invitations to arbitrary email addresses at an unlimited rate.

References

Configurations

CPE23	Version Start	Version End	Exact Version
cpe:2.3:a:discourse:discourse::::::::	n/a	2.8.7 (including)	*

External Links

NVD - CVE-2022-37458