• @ruk_n_rul
    link
    -1
    edit-2
    1 year ago

    https://kbin.social/m/android@lemdro.id/t/168524/Lemmy-world-and-another-instance-have-been-compromised#entry-comment-661712

    The linked comment suggests that the entire Lemmy platform is currently vulnerable to the cookie stealing exploit that already happened to several instances.

    Now, if only we have automod that could detect code injection in markdown links and tempban offenders…