We are suspecting there’s another critical vulnerability in LNBank, external plugin. We advise anyone using the plugin and have public registration available on their instance to disable the plugin or registration immediately while plugin author investigates the report.
Discussion
#nostrfr faites attention à vous,
Pensez a désactiver ce plug-in
sounds like this plugin shouldn't be used with public registrations
I found the plugin had been automatically disabled and all I could do was remove it upon the last major update.
🚨 I will follow up with details, but for bow please uninstall LNbank.
Glad to see these things getting caught
nostr:note1gq8u6kytv0cl2fc5xmqq37crpyh2usvex33pumaf9mnfq6vnwn7s07fnz2