CVE-2025-58054 - Vulnerability Details - OpenCVE

Discourse is an open-source community discussion platform. Versions 3.5.0 and below are vulnerable to XSS attacks through parsing and rendering of chat channel titles and chat thread titles via the quote message functionality when using the rich text editor. This issue is fixed in version 3.5.1.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact Low

Integrity Impact None

Availability Impact None

User Interaction Required

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Exploitation none

Automatable no

Technical Impact partial

Vendors	Products
Discourse	Discourse

No data.

No data.

References

Link	Providers
https://github.com/discourse/discourse/commit/3a224fd546d894ee408e7414b6879e814a792f91
https://github.com/discourse/discourse/security/advisories/GHSA-7p47-8m82-m2vf

History

Thu, 02 Oct 2025 09:00:00 +0000

Type	Values Removed	Values Added
First Time appeared		Discourse Discourse discourse
Vendors & Products		Discourse Discourse discourse

Wed, 01 Oct 2025 20:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Wed, 01 Oct 2025 19:00:00 +0000

Type	Values Removed	Values Added
Description		Discourse is an open-source community discussion platform. Versions 3.5.0 and below are vulnerable to XSS attacks through parsing and rendering of chat channel titles and chat thread titles via the quote message functionality when using the rich text editor. This issue is fixed in version 3.5.1.
Title		Discourse is vulnerable to XSS when quoting chat messages
Weaknesses		CWE-80
References		https://github.com/discourse/discourse/commit/3a224fd546d894ee408e7414b6879e814a792f91 https://github.com/discourse/discourse/security/advisories/GHSA-7p47-8m82-m2vf
Metrics		cvssV3_1 `{'score': 3.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:N'}`

MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published: 2025-10-01T18:42:54.700Z

Updated: 2025-10-01T19:24:29.602Z

Reserved: 2025-08-22T14:30:32.221Z

Link: CVE-2025-58054

Vulnrichment

Updated: 2025-10-01T19:04:03.917Z

NVD

Status : Awaiting Analysis

Published: 2025-10-01T19:15:36.150

Modified: 2025-10-02T19:11:46.753

Link: CVE-2025-58054

Redhat

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2025-58054", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "state": "PUBLISHED", "assignerShortName": "GitHub_M", "dateReserved": "2025-08-22T14:30:32.221Z", "datePublished": "2025-10-01T18:42:54.700Z", "dateUpdated": "2025-10-01T19:24:29.602Z"}, "containers": {"cna": {"title": "Discourse is vulnerable to XSS when quoting chat messages", "problemTypes": [{"descriptions": [{"cweId": "CWE-80", "lang": "en", "description": "CWE-80: Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS)", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 3.5, "baseSeverity": "LOW", "confidentialityImpact": "LOW", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:N", "version": "3.1"}}], "references": [{"name": "https://github.com/discourse/discourse/security/advisories/GHSA-7p47-8m82-m2vf", "tags": ["x_refsource_CONFIRM"], "url": "https://github.com/discourse/discourse/security/advisories/GHSA-7p47-8m82-m2vf"}, {"name": "https://github.com/discourse/discourse/commit/3a224fd546d894ee408e7414b6879e814a792f91", "tags": ["x_refsource_MISC"], "url": "https://github.com/discourse/discourse/commit/3a224fd546d894ee408e7414b6879e814a792f91"}], "affected": [{"vendor": "discourse", "product": "discourse", "versions": [{"version": "< 3.5.1", "status": "affected"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2025-10-01T18:42:54.700Z"}, "descriptions": [{"lang": "en", "value": "Discourse is an open-source community discussion platform. Versions 3.5.0 and below are vulnerable to XSS attacks through parsing and rendering of chat channel titles and chat thread titles via the quote message functionality when using the rich text editor. This issue is fixed in version 3.5.1."}], "source": {"advisory": "GHSA-7p47-8m82-m2vf", "discovery": "UNKNOWN"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2025-10-01T19:03:59.856488Z", "id": "CVE-2025-58054", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-10-01T19:24:29.602Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2025-58054", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2025-10-01T19:03:59.856488Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-10-01T19:04:03.917Z"}}], "cna": {"title": "Discourse is vulnerable to XSS when quoting chat messages", "source": {"advisory": "GHSA-7p47-8m82-m2vf", "discovery": "UNKNOWN"}, "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 3.5, "attackVector": "NETWORK", "baseSeverity": "LOW", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "LOW"}}], "affected": [{"vendor": "discourse", "product": "discourse", "versions": [{"status": "affected", "version": "< 3.5.1"}]}], "references": [{"url": "https://github.com/discourse/discourse/security/advisories/GHSA-7p47-8m82-m2vf", "name": "https://github.com/discourse/discourse/security/advisories/GHSA-7p47-8m82-m2vf", "tags": ["x_refsource_CONFIRM"]}, {"url": "https://github.com/discourse/discourse/commit/3a224fd546d894ee408e7414b6879e814a792f91", "name": "https://github.com/discourse/discourse/commit/3a224fd546d894ee408e7414b6879e814a792f91", "tags": ["x_refsource_MISC"]}], "descriptions": [{"lang": "en", "value": "Discourse is an open-source community discussion platform. Versions 3.5.0 and below are vulnerable to XSS attacks through parsing and rendering of chat channel titles and chat thread titles via the quote message functionality when using the rich text editor. This issue is fixed in version 3.5.1."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-80", "description": "CWE-80: Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS)"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2025-10-01T18:42:54.700Z"}}}, "cveMetadata": {"cveId": "CVE-2025-58054", "state": "PUBLISHED", "dateUpdated": "2025-10-01T19:24:29.602Z", "dateReserved": "2025-08-22T14:30:32.221Z", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "datePublished": "2025-10-01T18:42:54.700Z", "assignerShortName": "GitHub_M"}, "dataVersion": "5.1"}