CVE-2026-23743
BaseFortify
Publication date: 2026-01-28
Last updated on: 2026-01-30
Assigner: GitHub, Inc.
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| discourse | discourse | to 3.5.4 (exc) |
| discourse | discourse | From 2025.11.0 (inc) to 2025.11.2 (exc) |
| discourse | discourse | 2025.12.0 |
| discourse | discourse | 2026.1.0 |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-200 | The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability in Discourse versions prior to 3.5.4, 2025.11.2, 2025.12.1, and 2026.1.0 involves permalinks to access-restricted resources such as private topics, categories, posts, or hidden tags. When users without access clicked these permalinks, they were redirected to URLs containing the resource slug, which leaked potentially sensitive information like private topic titles through the redirect Location header and the 404 page's search box.
How can this vulnerability impact me? :
The vulnerability can lead to unintended disclosure of sensitive information by leaking resource identifiers and titles to unauthorized users. This could expose private discussions or confidential content to users who should not have access, potentially compromising privacy and confidentiality.
What immediate steps should I take to mitigate this vulnerability?
Upgrade Discourse to version 3.5.4, 2025.11.2, 2025.12.1, or 2026.1.0, as these versions contain the patch for this vulnerability. No known workarounds are available.