New Pleroma vuln dropped: https://gitlab.com/soapbox-pub/rebased/-/merge_requests/264/diffs
Yes, this is a new one that isn't the same as the one from yesterday.
I don't completely understand the impact of this one, but you need to upgrade your server again. It seems bad but I'm not sure exactly how to exploit it.
if i finished a round of upgrades literally seconds ago do i need to do it again?
Side-note: I don't think an XML parser is even needed on the Fediverse anymore. Everything is in JSON. This is unfortunate.
nostr:npub108pv4cg5ag52nq082kd5leu9ffrn2gdg6g4xdwatn73y36uzplmq9uyev6 Lotta gay vulnerability shit going on recently
nostr:npub18994crjwnldrukwym5lz3y2nae84s84v20m2rkngtjnyg549lr6qvxmd6m new pleroma vuln dropped btw
