Miguel on Nostr: "para filesender-dev Dear all, Jonathan Bouman discovered a server-side template ...
"para filesender-dev
Dear all,
Jonathan Bouman discovered a server-side template injection vulnerability that allows non-authenticated users to retrieve credentials configured on the server. This security flaw poses a significant risk as it could potentially expose sensitive information and compromise the integrity of your FileSender deployment. Immediate action is required!"
Published at
2024-09-10 15:28:05Event JSON
{
"id": "d1ab27cf3007b4fa56ff2359c3feb59038664da9248b1148c7dce68ecc29ebfd",
"pubkey": "c36b1d67c55cdab3053075fda6167a69bddae4d68eb4bd9ae738a681dd124e59",
"created_at": 1725974885,
"kind": 1,
"tags": [
[
"content-warning",
"filesender security issue"
],
[
"proxy",
"https://ciberlandia.pt/users/seyon/statuses/113113490111033406",
"activitypub"
]
],
"content": "\"para filesender-dev\n\nDear all,\n\nJonathan Bouman discovered a server-side template injection vulnerability that allows non-authenticated users to retrieve credentials configured on the server. This security flaw poses a significant risk as it could potentially expose sensitive information and compromise the integrity of your FileSender deployment. Immediate action is required!\"",
"sig": "2fb6caab756960eaad9ede5460cf059564b309b486e0bc7a9165adafbf2d21f92e71d98e24f6cbe7f67ca88a028b20b0be21892803cb674841423aeef8a194b8"
}