Discourse: Cross-Site Data Exposure via Backup Restore Metacommand Injection in...

5.5 / 10

MEDIUM

CVSS:4.0/AV:N/AC:H/AT:N/PR:H/UI:N/VC:L/VI:N/VA:N/SC:H/SI:H/SA:H

Description

Discourse is an open-source community discussion platform. In versions 3.5.0 and below, malicious meta-commands could be embedded in a backup dump and executed during restore. In multisite setups, this allowed an admin of one site to access data or credentials from other sites. This issue is fixed in version 3.5.1.

Basic Information

ID CVE-2025-59337

Source GitHub_M

Published Oct 1, 2025 at 20:41

Affected Product

Vendor discourse

Product discourse

Version < 3.5.1

Affected Versions discourse discourse < 3.5.1

CWE Classification

CWE-77

References

{
    "lastseen": "",
    "description": "Discourse is an open-source community discussion platform. In versions 3.5.0 and below, malicious meta-commands could be embedded in a backup dump and executed during restore. In multisite setups, this allowed an admin of one site to access data or credentials from other sites. This issue is fixed in version 3.5.1.",
    "published": "2025-10-01T20:41:45.833Z",
    "modified": "2025-10-01T20:41:45.833Z",
    "type": "cve",
    "title": "Discourse: Cross-Site Data Exposure via Backup Restore Metacommand Injection in Multisite Deployments",
    "source": "GitHub_M",
    "references": "https://github.com/discourse/discourse/security/advisories/GHSA-7xjr-4f4g-9887\nhttps://github.com/discourse/discourse/commit/43536b60d012cc8084e7e701d6afab9ba01e28a5",
    "id": "CVE-2025-59337",
    "bulletinFamily": "",
    "cwe": [
        "CWE-77"
    ],
    "cvelist": null,
    "sourceData": "discourse discourse < 3.5.1",
    "sourceHref": "",
    "cvss": {
        "score": 5.5,
        "severity": "MEDIUM",
        "vector": "CVSS:4.0/AV:N/AC:H/AT:N/PR:H/UI:N/VC:L/VI:N/VA:N/SC:H/SI:H/SA:H",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "discourse",
    "version": "< 3.5.1",
    "vendor": "discourse",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

Discourse: Cross-Site Data Exposure via Backup Restore Metacommand Injection in Multisite Deployments_CVE-2025-59337