How severe is CVE-2024-52794?

CVE-2024-52794 has a CVSS v3 score of 6.8 (MEDIUM).

CVE-2024-52794

Name: discourse
Author: discourse

6.8MEDIUM

Discourse is an open source platform for community discussion. Users clicking on the lightbox thumbnails could be affected. This problem is patched in the latest version of Discourse. Users are advise

Published: 12/19/2024Updated: 8/26/2025

Description

Discourse is an open source platform for community discussion. Users clicking on the lightbox thumbnails could be affected. This problem is patched in the latest version of Discourse. Users are advised to upgrade. There are no known workarounds for this vulnerability.

AI AnalysisPowered by AI

Affected Products

discoursediscourse

3.4.0

discoursediscourse

3.4.0

discoursediscourse

3.4.0

References

https://github.com/discourse/discourse/security/advisories/GHSA-m3v4-v2rp-hfm9
Vendor Advisory