CVE-2023-46480
on github
on github
Published
Severity
CVSS v3:
9.8 CRITICAL
CVSS v2:
N/A
Description
An issue in OwnCast v.0.1.1 allows a remote attacker to execute arbitrary code and obtain sensitive information via the authHost parameter of the indieauth function.
References
Configurations
CPE23 | Version Start | Version End | Exact Version |
---|---|---|---|
cpe:2.3:a:owncast_project:owncast:0.1.1:*:*:*:*:*:*:* | n/a | n/a | 0.1.1 |