Synced 17 Jun 2026 22:27 UTC Account

Is Discourse 2025.12.2 patched?

Discourse · cycle 2025.12 · end of life · Official site ↗
2025.12.240/100End of life

Current stable (2026.5.0): 74/100

Minimum safe version2026.1.4

2025.12.2 has 1 open critical-or-high vulnerability. Run 2026.1.4 or later to clear it. See what 2026.1.4 fixes →

Health score40/100
Open issues12
Exploited now0
Cycle 2025.12 EOL2026-02-26
Latest release2026.5.0

Summary iPlain-English security status for Discourse 2025.12.2, built from its CVEs, active-exploitation data, end-of-life date and latest release.

Discourse 2025.12.2 is part of the 2025.12 release line. 12 known vulnerabilities affect it. The minimum safe version is 2026.1.4 — upgrade to it or later to clear the open critical/high issues. The 2025.12 line reached end-of-life on 2026-02-26, so it no longer receives security patches. The latest supported Discourse release is 2026.5.0.

Known issues affecting 2025.12.2

Exploited first, then by exploitation probability.

CVE-2026-45775 MEDIUM EPSS 0% → fixed in 2026.4.1 CVE-2026-44786 HIGH EPSS 0% → fixed in 2026.4.1 CVE-2026-44784 MEDIUM EPSS 0% → fixed in 2026.4.1 CVE-2026-44779 MEDIUM EPSS 0% → fixed in 2026.4.1 CVE-2026-47264 MEDIUM EPSS 0% → fixed in 2026.4.1 CVE-2026-45085 MEDIUM EPSS 0% → fixed in 2026.4.1 CVE-2026-27166 MEDIUM EPSS 0% → fixed in 2026.3.0 CVE-2026-47263 MEDIUM EPSS 0% → fixed in 2026.4.1 CVE-2026-44780 MEDIUM EPSS 0% → fixed in 2026.4.1 CVE-2026-44782 MEDIUM EPSS 0% → fixed in 2026.4.1 CVE-2026-44785 MEDIUM EPSS 0% → fixed in 2026.4.1 CVE-2026-44783 MEDIUM EPSS 0% → fixed in 2026.4.1

Other Discourse versions

Check another release line of Discourse.

Discourse 2026.5.0Discourse 2026.4.1Discourse 2026.3.1Discourse 2026.2.2Discourse 2026.1.4Discourse 2025.11.2Discourse 3.5.4Discourse 3.4.7

Frequently asked

Is Discourse 2025.12.2 patched?

Discourse 2025.12.2 is end-of-life and no longer receives security patches. Move to 2026.5.0.

What version should I upgrade Discourse 2025.12.2 to?

Upgrade Discourse 2025.12.2 to at least 2026.1.4 to clear its 1 open critical-or-high vulnerability.

When does Discourse 2025.12 reach end-of-life?

Discourse 2025.12 reached end-of-life on 2026-02-26 and no longer receives security patches.

What is the latest version of Discourse?

The latest supported Discourse release is 2026.5.0.

Is Discourse 2025.12.2 still receiving security updates?

No — Discourse 2025.12.2 is on the 2025.12 line, which reached end-of-life on 2026-02-26 and no longer receives security updates. Upgrade to 2026.5.0 or later to stay supported.

Informational only, from public data (NVD · CISA KEV · EPSS · endoflife.date), and can lag or miss vendor-specific fixes. Always confirm against Discourse's official advisory before you patch or upgrade — Discourse official site ↗