Primary

Context

Discourse Privilege Escalation Vulnerability for Category Group Moderators

Vulnerability

Patched

A vulnerability exists in Discourse that allows category group moderators to perform privileged actions on topics in private categories without having the necessary read access. This issue affects Discourse versions 2026.1.0-latest to prior to 2026.1.3, 2026.2.0-latest to prior to 2026.2.2, and 2026.3.0-latest to prior to 2026.3.0.

Impact

Exploitation of this vulnerability could lead to unauthorized moderation actions in private categories, bypassing normal access controls.

Reproduction

To reproduce this vulnerability, a user must be a category group moderator with access to private categories. The user can then perform moderation actions on topics in those categories without the required read access. This can be verified by checking the access permissions and the actions taken on the topics.

Remediation

Users are advised to upgrade Discourse to version 2026.1.3, 2026.2.2, or 2026.3.0.

Added: Mar 31, 2026, 6:46 PM

Updated: Mar 31, 2026, 6:46 PM

Vulnerability Rating

Custom Algorithm

spread

2.4

impact

0.6

exploitability

4.3

remediation

7.7

relevance

5.0

threat

4.8

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

2.4

impact

0.6

exploitability

4.3

remediation

7.7

relevance

5.0

threat

4.8

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Discourse Privilege Escalation Vulnerability for Category Group Moderators

Vulnerability

Impact

Reproduction

Remediation

Affected Products

Discourse

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating