Lowjomaxrop

**Name of the Vulnerable Software and Affected Versions** Discourse versions prior to the latest stable, beta, and tests-passed versions **Description** Discourse is an open source platform for community discussion. Private message titles and metadata can be read by other users when the "PM tags allowed for groups" option is enabled, the other user is a member of a group added to this option, and the private message has been tagged. **Recommendations** For versions prior to the latest stable, beta, and tests-passed versions, update to the latest version. For users unable to update, remove all groups from the "PM tags allowed for groups" option as a temporary workaround.