Details of the Vulnerabilities: One of the critical vulnerabilities, identified as CVE-2023-36460, allowed attackers to create and overwrite files, potentially leading to DoS and remote code execution. The specific details of this vulnerability are not yet publicly disclosed. Another vulnerability, CVE-2023-36462, allowed attackers to craft verified profile links with concealed parts, potentially leading to URL masking and redirection to malicious sites. This vulnerability was considered to have moderate severity.
