Discourse-ai

This hub aggregates every CVE we track for Discourse-ai, a product in the web cms plugins space. Use it to gauge the current risk picture and drill into individual advisories.

Web & CMS Plugins

CVEs tracked

Critical

High

In CISA KEV

Severity distribution

MEDIUM1CRITICAL1

Monthly trend

2024-072026-06

Latest CVEs

See all →

The 2 most recently published vulnerabilities affecting Discourse-ai.

CVE-2024-54142Cross-site Scripting via Discourse-ai SharedAiConversation onebox in Discourse9.0Jan 14, 2025
CVE-2024-23654discourse-ai admin-initiated SSRF when interacting with AI services4.1Feb 21, 2024

Product normalization is registry-driven with AI assist and human review. How it works