misskey-dev Latest Vulnerabilities
Latest vulnerabilities published by misskey-dev
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
Data Import Vulnerability in Misskey Social Media Platform
CVE-2026-28433Misskey-devMisskey2.3LOWBypassing HTTP Signature Verification in Misskey by Misskey Development Team
CVE-2026-28432Misskey-devMisskey7.1HIGHInsufficient Permission Checks in Misskey by Misskey Dev
CVE-2026-28431Misskey-devMisskey9.2CRITICALIP Rate Limiting Bypass in Misskey by Untrusted Reverse Proxy
CVE-2025-66482Misskey-devMisskey6.9MEDIUMData Exposure in Misskey Platform by Undesirable Actors
CVE-2025-66402Misskey-devMisskey7.1HIGHOpen Source Social Media Platform Vulnerability in Misskey
CVE-2025-46559Misskey-devMisskey5.4MEDIUMCSS Injection Vulnerability in Misskey Open Source Social Media Platform
CVE-2025-46340Misskey-devMisskey7.2HIGHLogic Error in Misskey's Summaly Tool Allows Unwanted Redirects
CVE-2025-46553Misskey-devSummaly2.1LOWAuthentication Bypass Vulnerability in Misskey Social Media Platform
CVE-2025-25306Misskey-devMisskey9.3CRITICALCSRF Vulnerability in Misskey's Bull Dashboard Affecting Multiple Versions
CVE-2025-24897Misskey-devMisskey8.2HIGHAuthentication Token Exposure in Misskey Platform by Misskey Dev
CVE-2025-24896Misskey-devMisskey8.1HIGHMisskey allows the impersonation and takeover of remote accounts with unnormalized signed activities
CVE-2024-32983Misskey-devMisskey8.2HIGHMisskey vulnerability allows threat actors to impersonate and take over accounts on remote servers
CVE-2024-25636Misskey-devMisskey8.8HIGHMisskey vulnerable to improper authorization when accessing with third-party application
CVE-2023-52139misskey-devmisskey9.1CRITICALMisskey's missing signature validation allows arbitrary users to impersonate any remote user.
CVE-2023-49079misskey-devmisskey7.5HIGHMisskey allows users to bypass authentication of Bull dashboard
CVE-2023-43793Misskey-devMisskey7.5HIGHCross site scripting (XSS) vulnerability using authentication callback in Misskey
CVE-2023-24810Misskey-devMisskey7.1HIGHCross site scripting (XSS) vulnerability using url preview in Misskey
CVE-2023-24811Misskey-devMisskey7.1HIGHSQL injection of notes/search-by-tag
CVE-2023-24812Misskey-devMisskey8.8HIGHCross site scripting (XSS) of ActivityPub URI in misskey
CVE-2023-25154Misskey-devMisskey7.1HIGHServer-Side Request Forgery vulnerability in misskey
CVE-2021-39195Misskey-devMisskey7.7HIGHXSS vulnerability using dialog
CVE-2021-39169Misskey-devMisskey8HIGH