CVE-2023-43793

Published
View on NVD ↗
CVSS v3
7.5
HIGH
CVSS v2
N/A
Affected
2
PROJECTS

Description

Misskey is an open source, decentralized social media platform. Prior to version 2023.9.0, by editing the URL, a user can bypass the authentication of the Bull dashboard, which is the job queue management UI, and access it. Version 2023.9.0 contains a fix. There are no known workarounds.

misskey-dev/misskey
misskey-dev/misskey
🌎 A completely free and open interplanetary-microblogging platform 🚀
GitHubGitHub
11.2K
nexryai/concorde
nexryai/concorde
(旧称: nexkey) nexryaiによるMisskey v12ハードフォーク
GitHubGitHub
22