Sign in Create account

#cve202336460 — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #cve202336460, aggregated by home.social.

DEFCON 201 @[email protected] · 2023-07-11 · 13:54 UTC

From @MentalOutlaw:
In this video I discuss the recent security updates to Mastodon to fix critical security vulnerabilities that allowed for cross site scripting through oEmbed preview cards (CVE-2023-36459) and Arbitrary file creation through media attachments (CVE-2023-36460 AKA TootRoot) make sure the Mastodon instance you're using is on version 4.1.3 or later.
https://odysee.com/@AlphaNerd:8/mastodon-had-a-critical-security:5?r=5dSbLhamtNqgjc7Tj7jf54M4v1DZjbTD
#mastodon #fediverse #admin #cve #cve202336459 #cve202336460 #patch

#mastodon #fediverse #admin #cve #cve202336459 #cve202336460
privacypriority @[email protected] · 2023-07-08 · 10:12 UTC

Unraveling the TootRoot Bug: A Deep Dive into the Critical Vulnerability Impacting Mastodon Servers https://privacypriority.in/2023/07/unraveling-the-tootroot-bug-a-deep-dive-into-the-critical-vulnerability-impacting-mastodon-servers/ #Mastodon, #TootRootBug, #CyberSecurity, #OpenSource, #DecentralizedSocialMedia, #DataPrivacy, #CVE202336460, #CVE202336459, #ServerSecurity #Cybersecurity #News

#mastodon #tootrootbug #cybersecurity #opensource #decentralizedsocialmedia #dataprivacy