CVE-2025-67723

MEDIUM

Discourse < 3.5.4 - Cross-Site Scripting in Math Plugin KaTeX Variant

Title source: llm

Description

Discourse is an open source discussion platform. Versions prior to 3.5.4, 2025.11.2, 2025.12.1, and 2026.1.0 have a content-security-policy-mitigated cross-site scriptinv vulnerability on the Discourse Math plugin when using its KaTeX variant. This issue is patched in versions 3.5.4, 2025.11.2, 2025.12.1, and 2026.1.0. As a workaround, the Discourse Math plugin can be disabled, or the Mathjax provider can be used instead of KaTeX.

References (1)

Core 1

Core References

Vendor Advisory x_refsource_confirm

https://github.com/discourse/discourse/security/advisories/GHSA-955h-m28g-5379

Scores

CVSS v3 4.6

EPSS 0.0002

EPSS Percentile 4.6%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:L

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-79

Status published

Products (2)

discourse/discourse 2025.12.0

discourse/discourse < 3.5.4

Published Jan 28, 2026

Tracked Since Feb 18, 2026