Mattermost fails to disable public Boards after the "Enable Publicly-Shared Boards" configuration option is disabled, resulting in previously-shared public Boards to remain accessible.Read Mo ...
Continue Reading
July 17, 2023
Mattermost fails to invalidate previously generated password reset tokens when a new reset token was created.Read More ...
Continue Reading
July 17, 2023
Mattermost Boards fail to properly validate a board link, allowing an attacker to crash a channel by posting a specially crafted boards link.Read More ...
Continue Reading
July 17, 2023
Cross-Site Request Forgery (CSRF) vulnerability in Nikola Loncar Easy Appointments plugin Read More ...
Continue Reading
July 17, 2023
An issue was discovered on Espressif ESP32 3.0 (ESP32_rev300 ROM) devices. An EMFI attack on ECO3 provides the attacker with a capability to influence the PC value at the CPU context level, regardless ...
Continue Reading
July 17, 2023
Mattermost WelcomeBot plugin fails to to validate the membership status when inviting or adding users to channels allowing guest accounts to be added or invited to channels by default.Read More ...
Continue Reading
July 17, 2023
Mattermost fails to properly validate a gif image file, allowing an attacker to consume a significant amount of server resources, making the server unresponsive for an extended period of time by� ...
Continue Reading
July 17, 2023
Mattermost iOS app fails to properly validate the server certificate while initializing the TLS connection allowing a network attacker to intercept the WebSockets connection.Read More ...
Continue Reading
July 17, 2023
Back to Main
