Information disclosure in Discourse - CVE-2026-47264
Published: July 1, 2026
Discourse
Detailed vulnerability description
The vulnerability allows a remote attacker to disclose sensitive information.
The vulnerability exists due to exposure of sensitive information in DetailedTagSerializer#tag_group_names when handling tag info requests. A remote attacker can send a request to TagsController#info to disclose sensitive information.
Only instances with SiteSetting.tags_listed_by_group enabled are vulnerable, and the issue can expose names of tag groups restricted to specific user groups or non-visible categories.