diff --git a/src/socket.io/meta.js b/src/socket.io/meta.js
index 83fbcc13da..be7a6b07bc 100644
--- a/src/socket.io/meta.js
+++ b/src/socket.io/meta.js
@@ -57,6 +57,10 @@ SocketMeta.rooms.enter = function(socket, data, callback) {
 		return callback(new Error('[[error:invalid-data]]'));
 	}
 
+	if (data.enter && data.enter.startsWith('uid_') && data.enter !== 'uid_' + socket.uid) {
+		return callback(new Error('[[error:not-allowed]]'));
+	}
+
 	if (socket.currentRoom) {
 		socket.leave(socket.currentRoom);
 		if (socket.currentRoom.indexOf('topic') !== -1) {