High severity8.6NVD Advisory· Published Nov 30, 2023· Updated Jun 17, 2026
CVE-2023-49095
CVE-2023-49095
Description
nexkey is a microblogging platform. Insufficient validation of ActivityPub requests received in inbox could allow any user to impersonate another user in certain circumstances. This issue has been patched in version 12.122.2.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
2- github.com/nexryai/nexkey/commit/b96da0eac5a1e75abba94cf926f1251842829babnvdPatch
- github.com/nexryai/nexkey/security/advisories/GHSA-fpxw-rw9v-2gmxnvdPatchThird Party Advisory
News mentions
0No linked articles in our index yet.