Mastodon security update: every version prior to today's is vulnerable to remote user impersonation and takeover
Mastodon security update: every version prior to today's is vulnerable to remote user impersonation and takeover
github.com Remote user impersonation and takeover
### Summary Due to insufficient origin validation in all Mastodon, attackers can impersonate and take over any remote account. Every Mastodon version prior to 3.5.17 is vulnerable, as well as...
![Remote user impersonation and takeover](https://lemmy.ml/pictrs/image/9b30c970-d997-4313-83b5-be7339e72bec.png?format=webp&thumbnail=256)
0
comments