CVE-2026-27162 | Discourse up to 2025.12.1/2026.1.0 posts_nearby information disclosure

February 26, 2026 Yanac

A vulnerability was found in Discourse up to 2025.12.1/2026.1.0. It has been classified as problematic. This affects the function posts_nearby. The manipulation leads to information disclosure.

This vulnerability is traded as CVE-2026-27162. It is possible to initiate the attack remotely. There is no exploit available.

Upgrading the affected component is recommended.VulDB Recent EntriesRead More