VYPR

Pixelfed

by Pixelfed

Source repositories

CVEs (4)

  • CVE-2023-0901MedFeb 18, 2023
    risk 0.28cvss 5.3epss 0.01

    Exposure of Sensitive Information to an Unauthorized Actor in GitHub repository pixelfed/pixelfed prior to 0.11.4.

  • CVE-2023-0914MedFeb 19, 2023
    risk 0.27cvss 5.3epss 0.01

    Improper Authorization in GitHub repository pixelfed/pixelfed prior to 0.11.4.

  • CVE-2025-30741MedMar 25, 2025
    risk 0.21cvss 4.3epss 0.00

    Pixelfed before 0.12.5 allows anyone to follow private accounts and see private posts on other Fediverse servers. This affects users elsewhere in the Fediverse, if they otherwise have any followers from a Pixelfed instance.

  • CVE-2024-25108Feb 12, 2024
    risk 0.00cvss epss 0.01

    Pixelfed is an open source photo sharing platform. When processing requests authorization was improperly and insufficiently checked, allowing attackers to access far more functionality than users intended, including to the administrative and moderator functionality of the…