Contents / SocialBleed

CVE	Vulnerability name	Date	Responsible Security Disclosure by	Vulnerabilities
TODO	SocialBleed	2023-05-11 19.14 EET	Rajesh Thapa Did send detailed report!	Security: Links to Social Media at wekan.github.io could lead to theft of sensitive information Affected Wekan website before 2024-05-12 05.34 EET Fixed at Wekan website 2023-05-12 05.34 EET More details

Timeline	Details
2023-05-11 19.14 EET	Report received. Report had details how links to social media, like Discord, can lead to theft of sensitive information like location, email etc, trick the victim to download ransomware trojan etc.
2023-05-12 05.34 EET	Security: Links to Social Media at wekan.github.io could lead to theft of sensitive information Affected Wekan website before 2024-05-12 05.34 EET Fixed at Wekan website 2023-05-12 05.34 EET Fixed by WeKan maintainer xet7 by: Removing links to all social media from website, only having official contant with Public: Feature Requests and Bugs with GitHub Issues and Commercial Support with Email and Private Chat Removing all other contributors from WeKan GitHub Organization https://github.com/wekan to prevent any direct unnoticed changes, only allowing Pull Requests

Timeline

Details

2023-05-11 19.14 EET

Report received.

Report had details how links to social media, like Discord, can lead to theft of sensitive information like location, email etc, trick the victim to download ransomware trojan etc.

2023-05-12 05.34 EET

Security: Links to Social Media at wekan.github.io could lead to theft of sensitive information
Affected Wekan website before 2024-05-12 05.34 EET
Fixed at Wekan website 2023-05-12 05.34 EET
Fixed by WeKan maintainer xet7 by:
- Removing links to all social media from website, only having official contant with Public: Feature Requests and Bugs with GitHub Issues and Commercial Support with Email and Private Chat
- Removing all other contributors from WeKan GitHub Organization https://github.com/wekan to prevent any direct unnoticed changes, only allowing Pull Requests