CVE-2026-32113 | Discourse up to 2026.1.2/2026.2.1 sso_destination_url redirect

March 31, 2026 Yanac

A vulnerability, which was classified as problematic, was found in Discourse up to 2026.1.2/2026.2.1. This issue affects some unknown processing. The manipulation of the argument sso_destination_url results in open redirect.

This vulnerability was named CVE-2026-32113. The attack may be performed from remote. There is no available exploit.

You should upgrade the affected component.VulDB Recent EntriesRead More