Kevin Beaumont on Nostr: For anybody wondering what the Mastodon security issue is - CVE-2023-36460, you can ...
For anybody wondering what the Mastodon security issue is - CVE-2023-36460, you can send a toot which makes a webshell on instances that process it. #CVE202336460
Published at
2023-07-06 13:39:17Event JSON
{
"id": "2d51617845335c8dc6cb850df4fb7c97c4f3b9e2101221738da5af0c4c968eca",
"pubkey": "f6870afcde4480ec8508f50304859e14a51309ff24ab3f0f862c52bdc4af8747",
"created_at": 1688650757,
"kind": 1,
"tags": [
[
"t",
"cve202336460"
],
[
"mostr",
"https://cyberplace.social/users/GossiTheDog/statuses/110667416012211236"
]
],
"content": "For anybody wondering what the Mastodon security issue is - CVE-2023-36460, you can send a toot which makes a webshell on instances that process it. #CVE202336460",
"sig": "589a5f6c6c4e28994c8be4ef1370ea80e823a881dc6dee3eb85aecc6f9c9d522bdd68a184c4238addfd9ce1159af0051dd840808693fb245d2cb842c1b7535dc"
}
