Mastodon security update: every version prior to today's is vulnerable to remote user impersonation and takeover
Mastodon security update: every version prior to today's is vulnerable to remote user impersonation and takeover
github.com Remote user impersonation and takeover
### Summary Due to insufficient origin validation in all Mastodon, attackers can impersonate and take over any remote account. Every Mastodon version prior to 3.5.17 is vulnerable, as well as...
![Remote user impersonation and takeover](https://infosec.pub/pictrs/image/2eeed15c-1740-4e3d-aab5-910eef5d8c3d.png?format=webp&thumbnail=256)
0
comments