2 matches found
CVE-2023-42452
creationtimestamp| type| source ---|---|--- 2023-09-19 20:34:34+00:00| seen| https://t.me/cibsecurity/70741...
CVE-2023-42452
Mastodon CVE-2023-42452 affects 4.x branches prior to 4.0.10, 4.2.8, and 4.2.0-rc2. The issue allows Stored XSS via the translation feature by bypassing server-side HTML sanitization and executing unescaped HTML in the browser. Exploitation requires user interaction (clicking the Translate button...