CVE-2026-33415 | Discourse up to 2026.1.2/2026.2.1 access control

A vulnerability described as critical has been identified in Discourse up to 2026.1.2/2026.2.1. This vulnerability affects unknown code. Executing a manipulation can lead to improper access controls.

This vulnerability appears as CVE-2026-33415. The attack may be performed from remote. There is no available exploit.

Upgrading the affected component is recommended.VulDB Recent EntriesRead More