Mastodon security update: every version prior to today's is vulnerable to remote user impersonation and takeover
Open link in next tab
Remote user impersonation and takeover
https://github.com/mastodon/mastodon/security/advisories/GHSA-3fjr-858r-92rw
### Summary Due to insufficient origin validation in all Mastodon, attackers can impersonate and take over any remote account. Every Mastodon version prior to 3.5.17 is vulnerable, as well as...