BookWyrm is a social network for tracking your reading, talking about books, writing reviews, and discovering what to read next. Some links in BookWyrm may be vulnerable to tabnabbing, a form of phishing that gives attackers an opportunity to redirect a user to a malicious site. The issue was patched in version 0.4.5.
References
Link | Resource |
---|---|
https://github.com/bookwyrm-social/bookwyrm/security/advisories/GHSA-xq42-mq5w-m24x | Exploit Issue Tracking Third Party Advisory |
https://huntr.dev/bounties/67ca22bd-19c6-466b-955a-b1ee2da0c575/ | Exploit Issue Tracking Patch Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: GitHub_M
Published: 2022-08-12T20:15:13
Updated: 2022-08-12T20:15:13
Reserved: 2022-07-15T00:00:00
Link: CVE-2022-35953
JSON object: View
NVD Information
Status : Analyzed
Published: 2022-08-12T21:15:08.037
Modified: 2022-08-16T16:08:07.407
Link: CVE-2022-35953
JSON object: View
Redhat Information
No data.
CWE