Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mattermost mattermost server vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2015-9548
An issue exists in Mattermost Server prior to 1.2.0. It allows malicious users to cause a denial of service (memory consumption) via a small compressed file that has a large size when uncompressed.
Mattermost Mattermost Server
5
CVSSv2
CVE-2016-11062
An issue exists in Mattermost Server prior to 3.5.1. E-mail address verification can be bypassed.
Mattermost Mattermost Server
5
CVSSv2
CVE-2016-11067
An issue exists in Mattermost Server prior to 3.2.0. It allowed crafted posts that could cause a web browser to hang.
Mattermost Mattermost Server
5
CVSSv2
CVE-2016-11068
An issue exists in Mattermost Server prior to 3.2.0. Attackers could read LDAP fields via injection.
Mattermost Mattermost Server
5
CVSSv2
CVE-2016-11069
An issue exists in Mattermost Server prior to 3.2.0. It mishandles brute-force attempts at password change.
Mattermost Mattermost Server
5
CVSSv2
CVE-2016-11076
An issue exists in Mattermost Server prior to 3.0.0. It does not ensure that a cookie is used over SSL.
Mattermost Mattermost Server
5
CVSSv2
CVE-2017-18895
An issue exists in Mattermost Server prior to 4.2.0, 4.1.1, and 4.0.5. It allows malicious users to obtain sensitive information (user statuses) via a REST API version 4 endpoint.
Mattermost Mattermost Server
Mattermost Mattermost Server 4.2.0
5
CVSSv2
CVE-2017-18898
An issue exists in Mattermost Server prior to 4.2.0, 4.1.1, and 4.0.5. It allows crafted posts that potentially cause a web browser to hang.
Mattermost Mattermost Server
Mattermost Mattermost Server 4.2.0
5
CVSSv2
CVE-2017-18887
An issue exists in Mattermost Server prior to 4.3.0, 4.2.1, and 4.1.2. It discloses the team creator's e-mail address to members.
Mattermost Mattermost Server
Mattermost Mattermost Server 4.3.0
5
CVSSv2
CVE-2017-18896
An issue exists in Mattermost Server prior to 4.2.0, 4.1.1, and 4.0.5. It allows malicious users to add DEBUG lines to the logs via a REST API version 3 logging endpoint.
Mattermost Mattermost Server
Mattermost Mattermost Server 4.2.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »