this post was submitted on 10 Jul 2023
41 points (100.0% liked)

Fediverse

19 readers
2 users here now

This magazine is dedicated to discussions on the federated social networking ecosystem, which includes decentralized and open-source social media platforms. Whether you are a user, developer, or simply interested in the concept of decentralized social media, this is the place for you. Here you can share your knowledge, ask questions, and engage in discussions on topics such as the benefits and challenges of decentralized social media, new and existing federated platforms, and more. From the latest developments and trends to ethical considerations and the future of federated social media, this category covers a wide range of topics related to the Fediverse.

founded 2 years ago
 

Notes: The vulnerability appears to be with Lemmy software, and other instances are possibly vulnerable until the Lemmy devs resolve it, however Lemmy.World has implemented their own fix in the meantime. It has not yet been ruled out if non-admin users have had their tokens compromised, but all accounts should be forced to manually log in again, as a preventative measure.

you are viewing a single comment's thread
view the rest of the comments
[–] atocci@kbin.social 10 points 1 year ago

They managed to do this through the custom emoji renderer? Exploits are always so fascinating.