CVE-2025-68934
- Source
- https://cve.org/CVERecord?id=CVE-2025-68934
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-68934.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2025-68934
- Aliases
-
- BIT-discourse-2025-68934
- GHSA-vwjh-vrx9-9849
- Published
- 2026-01-28T19:19:59.627Z
- Modified
- 2026-03-01T02:55:47.748851Z
- Severity
-
- 6.5 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- Discourse Has Denial of Service (DoS) Vulnerability in Drafts Creation Endpoint
- Details
-
Discourse is an open source discussion platform. In versions prior to 3.5.4, 2025.11.2, 2025.12.1, and 2026.1.0, authenticated users can submit crafted payloads to /drafts.json that cause O(n^2) processing in Base62.decode, tying up workers for 35-60 seconds per request. This affects all users as the shared worker pool becomes exhausted. This issue is patched in versions 3.5.4, 2025.11.2, 2025.12.1, and 2026.1.0. Lowering the maxdraftlength site setting reduces attack surface but does not fully mitigate the issue, as payloads under the limit can still trigger the slow code path.
- Database specific
{ "cna_assigner": "GitHub_M", "cwe_ids": [ "CWE-770" ], "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/68xxx/CVE-2025-68934.json" }- References
Affected packages
Git / github.com/discourse/discourse
Affected ranges
- Type
- GIT
- Repo
- https://github.com/discourse/discourse
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixed
- Database specific
{ "versions": [ { "introduced": "0" }, { "fixed": "3.5.4" } ] }