Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mattermost mattermost server vulnerabilities and exploits
(subscribe to this query)
445
VMScore
CVE-2016-11066
An issue exists in Mattermost Server prior to 3.2.0. The initial_load API disclosed unnecessary personal information.
Mattermost Mattermost Server
445
VMScore
CVE-2016-11069
An issue exists in Mattermost Server prior to 3.2.0. It mishandles brute-force attempts at password change.
Mattermost Mattermost Server
445
VMScore
CVE-2016-11062
An issue exists in Mattermost Server prior to 3.5.1. E-mail address verification can be bypassed.
Mattermost Mattermost Server
445
VMScore
CVE-2016-11067
An issue exists in Mattermost Server prior to 3.2.0. It allowed crafted posts that could cause a web browser to hang.
Mattermost Mattermost Server
445
VMScore
CVE-2016-11075
An issue exists in Mattermost Server prior to 3.0.0. It allows malicious users to obtain sensitive information about team URLs via an API.
Mattermost Mattermost Server
445
VMScore
CVE-2016-11076
An issue exists in Mattermost Server prior to 3.0.0. It does not ensure that a cookie is used over SSL.
Mattermost Mattermost Server
445
VMScore
CVE-2017-18902
An issue exists in Mattermost Server prior to 4.1.0, 4.0.4, and 3.10.3. It allows malicious users to discover team invite IDs via team API endpoints.
Mattermost Mattermost Server
445
VMScore
CVE-2017-18887
An issue exists in Mattermost Server prior to 4.3.0, 4.2.1, and 4.1.2. It discloses the team creator's e-mail address to members.
Mattermost Mattermost Server
Mattermost Mattermost Server 4.3.0
445
VMScore
CVE-2017-18895
An issue exists in Mattermost Server prior to 4.2.0, 4.1.1, and 4.0.5. It allows malicious users to obtain sensitive information (user statuses) via a REST API version 4 endpoint.
Mattermost Mattermost Server
Mattermost Mattermost Server 4.2.0
445
VMScore
CVE-2017-18896
An issue exists in Mattermost Server prior to 4.2.0, 4.1.1, and 4.0.5. It allows malicious users to add DEBUG lines to the logs via a REST API version 3 logging endpoint.
Mattermost Mattermost Server
Mattermost Mattermost Server 4.2.0
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »