CVE-2025-68666— Discourse 安全漏洞
新しい脆弱性情報の通知を購読するログインして購読
I. CVE-2025-68666の基本情報
脆弱性情報
脆弱性についてご質問がありますか?Shenlongの分析が参考になるかご確認ください!
Shenlongの10の質問を表示 ↗ 高度な大規模言語モデル技術を使用していますが、出力には不正確または古い情報が含まれる可能性があります。Shenlongはデータの正確性を確保するよう努めていますが、実際の状況に基づいて検証・判断してください。
脆弱性タイトル
Discourse users archives leaked to users with moderation privileges
ソース: NVD (National Vulnerability Database)
脆弱性説明
Discourse is an open source discussion platform. In versions prior to 3.5.4, 2025.11.2, 2025.12.1, and 2026.1.0, users archives are viewable by users with moderation privileges even though moderators should not have access to the archives. Private topic/post content made by the users are leaked through the archives leading to a breach of confidentiality. This issue is patched in versions 3.5.4, 2025.11.2, 2025.12.1, and 2026.1.0. To work around this problem, a site admin can temporarily revoke the moderation role from all moderators until the Discourse instance has been upgraded to a version that has been patched.
ソース: NVD (National Vulnerability Database)
CVSS情報
N/A
ソース: NVD (National Vulnerability Database)
脆弱性タイプ
授权机制不正确
ソース: NVD (National Vulnerability Database)
脆弱性タイトル
Discourse 安全漏洞
ソース: CNNVD (China National Vulnerability Database)
脆弱性説明
Discourse是Discourse开源的一套开源的社区讨论平台。该平台包括社区、电子邮件和聊天室等功能。 Discourse 3.5.4之前版本、2025.11.2之前版本、2025.12.1之前版本和2026.1.0之前版本存在安全漏洞,该漏洞源于具有审核权限的用户可以查看用户档案,可能导致机密性破坏。
ソース: CNNVD (China National Vulnerability Database)
CVSS情報
N/A
ソース: CNNVD (China National Vulnerability Database)
脆弱性タイプ
N/A
ソース: CNNVD (China National Vulnerability Database)
影響を受ける製品
II. CVE-2025-68666の公開POC
| # | POC説明 | ソースリンク | Shenlongリンク |
|---|
AI生成POCプレミアム
公開POCは見つかりませんでした。
ログインしてAI POCを生成III. CVE-2025-68666のインテリジェンス情報
请登录查看更多情报信息。
Same Patch Batch · discourse · 2026-01-28 · 14 CVEs total
| CVE-2025-68662 | 7.6 HIGH | FinalDestination hostname matching allows SSRF protection bypass |
| CVE-2025-68479 | 7.1 HIGH | Discourse subscriptions are susceptible to takeover |
| CVE-2025-68933 | 6.9 MEDIUM | Discourse non-admin moderators can exfiltrate private content via post ownership transfer |
| CVE-2026-24742 | 6.5 MEDIUM | Discourse staff action logs expose sensitive information to moderators |
| CVE-2026-21865 | 6.5 MEDIUM | Discourse topic conversion permission vulnerability for moderators |
| CVE-2025-68934 | 6.5 MEDIUM | Discourse Has Denial of Service (DoS) Vulnerability in Drafts Creation Endpoint |
| CVE-2025-67723 | 4.6 MEDIUM | Discourse vulnerable to stored Cross-site Scripting via Katex in discourse-math plugin |
| CVE-2025-66488 | 4.6 MEDIUM | Discourse allows script execution in uploaded HTML/XML files on S3 |
| CVE-2025-68659 | 4.3 MEDIUM | Discourse has DoS vulnerability in username change endpoint |
| CVE-2026-23743 | Discourse allows permalinks to restricted resources to leak resource slugs to unauthorized | |
| CVE-2025-69289 | Discourse has insecure default configuration that allows non-admin moderators to takeover | |
| CVE-2025-69218 | Discourse moderators can access admin-only reports exposing private upload URLs | |
| CVE-2025-68660 | Discourse AI Discover's continue conversation allows threat actor to impersonate user |
IV. 関連脆弱性
同じ製品: discourse
- CVE-2026-34947
Discourse: Staged user custom fields are exposed on public i - CVE-2026-27481
Discourse: Hidden tag visibility bypass on tag routes - CVE-2026-33415
Discourse: Improper Access Control in discourse-ai Allows Un - CVE-2026-33300
Discourse: Hidden group names and access metadata are expose - CVE-2026-33185
Discourse: Group SMTP test endpoint susceptible to SSRF
同じベンダー: discourse
- CVE-2026-34947
Discourse: Staged user custom fields are exposed on public i - CVE-2026-27481
Discourse: Hidden tag visibility bypass on tag routes - CVE-2026-33415
Discourse: Improper Access Control in discourse-ai Allows Un - CVE-2026-33300
Discourse: Hidden group names and access metadata are expose - CVE-2026-33185
Discourse: Group SMTP test endpoint susceptible to SSRF
同じ弱点: CWE-863
- CVE-2026-42571
Privilege Escalation Attack affecting Pelican Web UI - CVE-2025-15633
HCL BigFix WebUI is affected by an improper authorization vu - CVE-2026-42296
Argo Workflows has incomplete fix for CVE-2026-31892: hostNe - CVE-2025-66170
Apache CloudStack: Any user can list backups that they shoul - CVE-2026-41903
FreeScout IDOR Vulnerability: PERM_EDIT_USERS allows modifyi
V. CVE-2025-68666へのコメント
まだコメントはありません