Filter
-Infinity
0
Trending
Mattermost Mobile AppsDenial of Service Via Malicious GIF
6.5
First published (updated )
MattermostBypassing MFA Enforcement on Plugin Endpoints
8.8
First published (updated )
MattermostUnauthorized Bookmark Creation and Modification in Archived Channels
4.3
First published (updated )
MattermostMFA Enforcement Bypass in Search APIs
6.5
EPSS
0.04%
First published (updated )
MattermostUnauthorized Command Execution in Archived Channels
8.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
MattermostUnauthorized Private-to-Public Channel Conversion
5.4
EPSS
0.04%
First published (updated )
MattermostAuto-Enrollment of Team Admins into Private Channels without explicit consent
3.3
EPSS
0.04%
First published (updated )
MattermostUnauthorized View Access to Site Statistics and Team Statistics
4.3
First published (updated )
npm/mattermost-desktopmacOS TCC Bypass via Code Injection
10
First published (updated )
MattermostSQL Injection in Mattermost Boards via board category ID reordering
9.6
EPSS
0.04%
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
MattermostMobile crash via object that can't be cast to String in Attachment Field
6.5
EPSS
0.04%
First published (updated )
MattermostMobile crash via improper validation of proto style in attachments
6.5
EPSS
0.04%
First published (updated )
MattermostMobile crash via file with specially crafted filename
4.3
EPSS
0.04%
First published (updated )
Mattermost Mobile AppsInsufficient Input Validation on Post Props
6.5
EPSS
0.04%
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
MattermostInsufficient Input Validation on Post Props
6.5
EPSS
0.04%
First published (updated )
MattermostImproper propagation of permission scheme updates across cluster nodes
4.6
First published (updated )
MattermostPrivate channel names leaking when Elasticsearch is enabled
4.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
MattermostUnauthorized Access to view channels' details
4.3
First published (updated )
MattermostClient-Side Path Traversal Leading to CSRF in Playbooks
4.6
First published (updated )
MattermostInsufficient Authorization On Unlinked Channel Files
4.3
EPSS
0.04%
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
MattermostDoS via non-string message using permalink embed
6.5
First published (updated )
MattermostUnauthorized access on archived channels via file links
4.3
First published (updated )
npm/mattermost-desktopInsufficient Electron Fuses Configuration
6.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.