CVE-2023-46851 — Allura Discussion and Allura Forum importing does not restrict URL values specified in attachments. Project administrators can run these imports, which could cause Allura to read local files and expos — CVE Database · The Intelligence Room