nexkey is a microblogging platform. Insufficient validation of ActivityPub requests received in inbox could allow any user to impersonate another user in certain circumstances. This issue has been patched in version 12.122.2.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: GitHub_M
Published: 2023-11-30T07:10:10.994Z
Updated: 2024-08-02T21:46:29.222Z
Reserved: 2023-11-21T18:57:30.430Z
Link: CVE-2023-49095
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2023-11-30T07:15:09.133
Modified: 2023-12-05T17:31:04.357
Link: CVE-2023-49095
Redhat
No data.