CVE-2025-68660
BaseFortify
Publication date: 2026-01-28
Last updated on: 2026-01-30
Assigner: GitHub, Inc.
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| discourse | discourse | to 3.5.4 (exc) |
| discourse | discourse | From 2025.11.0 (inc) to 2025.11.2 (exc) |
| discourse | discourse | 2025.12.0 |
| discourse | discourse | 2026.1.0 |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-863 | The product performs an authorization check when an actor attempts to access a resource or perform an action, but it does not correctly perform the check. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability in Discourse allows any authenticated user to bypass access controls on the ai_discover_persona endpoint. This lets them gain ongoing direct message access to personas that may be linked to staff-only categories, restricted document sets, or automated tools, leading to unauthorized data disclosure. Additionally, because the endpoint accepts arbitrary user IDs, an attacker can impersonate other accounts to trigger unwanted AI conversations on their behalf, causing confusing or abusive private message traffic. The issue is fixed in versions 3.5.4, 2025.11.2, 2025.12.1, and 2026.1.0.
How can this vulnerability impact me? :
This vulnerability can lead to unauthorized disclosure of sensitive information by allowing attackers to access staff-only personas and restricted data. It also enables attackers to impersonate other users to generate unwanted or abusive AI-driven private messages, potentially disrupting communication and trust within the platform.
What immediate steps should I take to mitigate this vulnerability?
Upgrade Discourse to version 3.5.4, 2025.11.2, 2025.12.1, or 2026.1.0, as these versions contain the patch that fixes this vulnerability. No known workarounds are available.