5Şub
CVE-2025-22602 | Discourse Video Placeholder cross site scripting (GHSA-jcjx-694p-c5m3)
A vulnerability classified as problematic was found in Discourse up to beta 3.4.0.beta3/stable 3.3.3/tests-passed 3.4.0.beta3. This vulnerability affects unknown code of the component Video Placeholder. The manipulation leads to cross site scripting. This vulnerability was named CVE-2025-22602. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.