22
Lemmy Security Vulnerability: XSS In the Wild (sh.itjust.works)
submitted 1 year ago* (last edited 1 year ago) by henfredemars@infosec.pub to c/infosecpub@infosec.pub
9 comments fedilink hide all child comments

Be careful what posts you click until this is patched.

EDIT: Clarify, this server I expect is also vulnerable, hence the choice of community.

you are viewing a single comment's thread
view the rest of the comments
[-] br3ad@infosec.pub 4 points 1 year ago

Looks like there are other potential vulnerabilities which makes this issue worse. Possibly CSRF? https://github.com/LemmyNet/lemmy/issues/3505

this post was submitted on 06 Jul 2023
22 points (100.0% liked)

Discussions related to Infosec.pub

1121 readers
1 users here now

founded 1 year ago
MODERATORS
jerry@infosec.pub