Boosts - *Edit*: there is now a mitigation available. It should be safe to use Lemmy... - kbin.social

losttourist, 10 months ago (edited 10 months ago)

Edit: there is now a mitigation available. It should be safe to use Lemmy again as long as your instance has applied the fix.

https://lemmy.world/post/1293336

Yep, it looks like there is a XSS vulnerability with Lemmy that has been widely exploited, allowing the attackers to steal cookie credentials including potentially those of the site admins.

Some other non-compromised Lemmy instances have taken themselves offline until a fix is available.

Kbin is not affected as far as I can see.

If you have a Lemmy account, don't use it at the moment!

#Lemmy #Fediverse #Threadiverse #XSS #infosec

reply

expand (6)

collapse (6)

report

activity

copy /kbin url

copy original url

open original url

Loading...

+ oblomov, pls, cliffwade, testing +13 more

michael 10 months ago
volodymyr 10 months ago
jaybird110127 10 months ago
pitermach 10 months ago
anathema_device 10 months ago
masukomi 10 months ago
jcrabapple 10 months ago
developerjustin 10 months ago
majorlinux 10 months ago
cydonian 10 months ago
Kiloku 10 months ago
CodexArcanum 10 months ago
eveiswurzig 10 months ago
testing 10 months ago
cliffwade 10 months ago
pls 10 months ago
oblomov 10 months ago

Federation

Status:

Instances:

/m/fediverse

Microblog (18516)

Thread

losttourist

@losttourist@social.chatty.monster

Added: 10 months ago
Online: -
Boosts: 17

Magazine

Fediverse

@fediverse@kbin.social

This magazine is dedicated to discussions on the federated social networking ecosystem, which includes decentralized and open-source social media platforms.

Whether you are a user, developer, or simply interested in the concept of decentralized social media, this is the place for you. Here you can share your knowledge, ask questions, and engage in discussions on topics such as the benefits and challenges of decentralized social media, new and existing federated platforms, and more.

From the latest developments and trends to ethical considerations and the future of federated social media, this category covers a wide range of topics related to the Fediverse.

Created: 1 year ago
Owner: ernest
Subscribers: 11601
Online: -

Threads 1155
Comments 4899
Posts 18516
Replies 54783
Moderators 1
Moderation log 5

Tags

#mastodon #pleroma #peertube #fediwersum #pixelfeed #funkwhale #owncast #soapbox #lemmy #misskey #activitypub

Moderators

ernest

Active people

Related posts

Pixelfed Live is so fun to use, and I'm working on making it even easier to use end-to-end....

Show more

11 hours ago to Pixelfed

🌶️ take of the day:...

Show more

12 hours ago to threads

This week’s The Payload newsletter is out. It has the latest news and more in the Symfony, Drupal, PHP, Cybersec, and Fediverse development communities....

Show more

8 hours ago to Symfony

:neofox_bottom: Hi 👋🏼🙋🏼‍♀️ Anybody here? 🥺...

Show more

3 hours ago to mastodon

Related threads

Combating spam on kbin - some thoughts

Show more

4 months ago to kbinMeta

An update regarding the future of m/AskKbin (heading towards Mbin)

Show more

24 days ago to AskKbin

I think we should slightly rethink how login works on most Fediverse apps (Mastodon, Lemmy, but not only)

Show more

28 days ago to fediverse

Symfony Station Communiqué - 12 January 2024 | Symfony Station

Show more

4 months ago to Symfony

Support Us