discourse-group-membership-ip-block is a discourse plugin that adds support for adding users to groups based on their IP address. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.
Gessler GmbH WEB-MASTER user account is stored using a weak hashing algorithm. Rated medium severity (CVSS 4.4), this vulnerability is low attack complexity. No vendor patch available.