Volerion logoVolerion
Volerion logoVolerion

Discourse Access Control Bypass Vulnerability in AI Discover Persona Feature Allowing Unauthorized Data Disclosure and Impersonation

Vulnerability

A vulnerability exists in Discourse versions prior to 3.5.4, 2025.11.2, 2025.12.1, and 2026.1.0. An endpoint allows any authenticated user to bypass access controls related to the AI Discover persona feature. This bypass grants ongoing direct message access to personas linked with staff-only categories, RAG document sets, or automated tools, leading to unauthorized data disclosure. Additionally, the affected controller accepts arbitrary user IDs, enabling attackers to impersonate other accounts and initiate unwanted AI conversations on their behalf, creating confusing or abusive private message traffic.

Impact

Exploitation of this vulnerability could result in unauthorized access to sensitive data through improper disclosure via direct messages. It also allows for impersonation of other users, potentially leading to misuse of the AI conversation feature and disruption of private message communications.

Remediation

Users are advised to upgrade to Discourse versions 3.5.4, 2025.11.2, 2025.12.1, or 2026.1.0.

Added: Jan 28, 2026, 7:29 PM
Updated: Jan 28, 2026, 7:29 PM

Vulnerability Rating

Custom Algorithm
spread
2.4
impact
2.5
exploitability
2.9
remediation
7.7
relevance
2.4
threat
0.0
urgency
2.9
incentive
0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.