Known Vulnerabilities for Mastodon by Joinmastodon
Listed below are 10 of the newest known vulnerabilities associated with "Mastodon" by "Joinmastodon".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-33869 json | Mastodon is a free, open-source social network server based on ActivityPub. In versions on the 4.5.x branch prior to 4.5.8 an... | Not Provided | 2026-03-27 | 2026-03-27 |
| CVE-2026-33868 json | Mastodon is a free, open-source social network server based on ActivityPub. Prior to versions 4.5.8, 4.4.15, and 4.3.21, an u... | Not Provided | 2026-03-27 | 2026-03-31 |
| CVE-2025-22660 json | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Wolfgang Include Mastod... | Not Provided | 2025-03-27 | 2026-04-01 |
| CVE-2024-11455 json | The Include Mastodon Feed plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'include-mastodo... | Not Provided | 2024-11-21 | 2026-04-08 |
| CVE-2023-42452 json | Mastodon is a free, open-source social network server based on ActivityPub. In versions on the 4.x branch prior to versions 4... | 5.4 - MEDIUM | 2023-09-19 | 2023-09-22 |
| CVE-2023-42451 json | Mastodon is a free, open-source social network server based on ActivityPub. Prior to versions 3.5.14, 4.0.10, 4.1.8, and 4.2.... | 7.5 - HIGH | 2023-09-19 | 2023-09-22 |
| CVE-2023-42450 json | Mastodon is a free, open-source social network server based on ActivityPub. Starting in version 4.2.0-beta1 and prior to vers... | 7.5 - HIGH | 2023-09-19 | 2023-09-25 |
| CVE-2023-36462 json | Mastodon is a free, open-source social network server based on ActivityPub. Starting in version 2.6.0 and prior to versions 3... | 5.4 - MEDIUM | 2023-07-06 | 2023-07-13 |
| CVE-2023-36461 json | Mastodon is a free, open-source social network server based on ActivityPub. When performing outgoing HTTP queries, Mastodon s... | 7.5 - HIGH | 2023-07-06 | 2023-07-14 |
| CVE-2023-36460 json | Mastodon is a free, open-source social network server based on ActivityPub. Starting in version 3.5.0 and prior to versions 3... | 9.9 - CRITICAL | 2023-07-06 | 2023-07-14 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Joinmastodon | Mastodon | 2.9.3 | |||
| Application | Joinmastodon | Mastodon | 2.9.2 | |||
| Application | Joinmastodon | Mastodon | 2.9.1 | |||
| Application | Joinmastodon | Mastodon | 2.9.0 | |||
| Application | Joinmastodon | Mastodon | 2.9.0 | |||
| Application | Joinmastodon | Mastodon | 2.9.0 | |||
| Application | Joinmastodon | Mastodon | 2.8.4 | |||
| Application | Joinmastodon | Mastodon | 2.8.3 | |||
| Application | Joinmastodon | Mastodon | 2.8.2 | |||
| Application | Joinmastodon | Mastodon | 2.8.1 | |||
| Application | Joinmastodon | Mastodon | 2.8.0 | |||
| Application | Joinmastodon | Mastodon | 2.8.0 | |||
| Application | Joinmastodon | Mastodon | 2.8.0 | |||
| Application | Joinmastodon | Mastodon | 2.8.0 | |||
| Application | Joinmastodon | Mastodon | 2.7.4 | |||
| Application | Joinmastodon | Mastodon | 2.7.3 | |||
| Application | Joinmastodon | Mastodon | 2.7.2 | |||
| Application | Joinmastodon | Mastodon | 2.7.1 | |||
| Application | Joinmastodon | Mastodon | 2.7.0 | |||
| Application | Joinmastodon | Mastodon | 2.7.0 |