CVE-2021-41271
Cache poisoning via maliciously-formed request in discourse
In short
A specially crafted request to Discourse could trick intermediate proxies into caching error pages, potentially exposing sensitive information to other users who receive the cached response.
Technical detail
Cache poisoning vulnerability in Discourse allowing an attacker to send a maliciously-formed request that causes the application to generate an error response, which intermediate proxies cache and serve to subsequent users. This results in information disclosure (CWE-200) when cached error pages contain sensitive content. The attack requires the ability to send HTTP requests to the application.
Summary generated and translated by AI from the official description.
Discourse is a platform for community discussion. In affected versions a maliciously crafted request could cause an error response to be cached by intermediate proxies. This could cause a loss of confidentiality for some content. This issue is patched in the latest stable, beta and tests-passed versions of Discourse.
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:L
Affected products
discourse · discourseWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →