@sheogorath @thomas @mhamzahkhan By default, Mastodon *executes* code from the *runtime-writeable* tmp/ dir in its source code.
They know it can potentially be exploited for RCE (and it was, in CVE-2023-36460), but chose not to fix it by default: https://github.com/mastodon/mastodon/issues/4625#issuecomment-431602474
Embed Notice
HTML Code
Corresponding Notice
- Embed this notice
val (val@oc.todon.fr)'s status on Sunday, 10-Sep-2023 18:09:48 JSTval