Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mattermost mattermost server vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2019-20868
An issue exists in Mattermost Server prior to 5.11.0. Invite IDs were improperly generated.
Mattermost Mattermost Server
Mattermost Mattermost Server 5.9.0
7.5
CVSSv3
CVE-2019-20871
An issue exists in Mattermost Server prior to 5.9.0, 5.8.1, 5.7.3, and 4.10.8. The Markdown library allows catastrophic backtracking.
Mattermost Mattermost Server
Mattermost Mattermost Server 5.9.0
7.5
CVSSv3
CVE-2019-20874
An issue exists in Mattermost Server prior to 5.9.0, 5.8.1, 5.7.3, and 4.10.8. It allows malicious users to obtain sensitive information during a role change.
Mattermost Mattermost Server
Mattermost Mattermost Server 5.9.0
7.5
CVSSv3
CVE-2019-20852
An issue exists in Mattermost Mobile Apps prior to 1.26.0. Local logging is not blocked for sensitive information (e.g., server addresses or message content).
Mattermost Mattermost Mobile
7.5
CVSSv3
CVE-2019-20854
An issue exists in Mattermost Server prior to 5.17.0. It allows remote malicious users to cause a denial of service (client-side application crash) via a LaTeX message.
Mattermost Mattermost Server
7.5
CVSSv3
CVE-2019-20855
An issue exists in Mattermost Server prior to 5.16.1, 5.15.2, 5.14.5, and 5.9.6. It allows malicious users to obtain sensitive information (local files) during legacy attachment migration.
Mattermost Mattermost Server
7.5
CVSSv3
CVE-2019-20857
An issue exists in Mattermost Server prior to 5.16.0. It allows malicious users to cause a denial of service (markdown renderer hang) via many backtick characters.
Mattermost Mattermost Server
7.5
CVSSv3
CVE-2019-20858
An issue exists in Mattermost Server prior to 5.15.0. It allows malicious users to cause a denial of service (CPU consumption) via crafted characters in a SQL LIKE clause to an APIv4 endpoint.
Mattermost Mattermost Server
7.5
CVSSv3
CVE-2019-20859
An issue exists in Mattermost Server prior to 5.15.0. Login access control can be bypassed via crafted input.
Mattermost Mattermost Server
Mattermost Mattermost Server 5.9.0
7.5
CVSSv3
CVE-2019-20862
An issue exists in Mattermost Server prior to 5.13.0. Non-members may fetch a team's slash commands.
Mattermost Mattermost Server
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5248
CVE-2024-3110
CVE-2024-5552
CVE-2024-29415
HTML injection
CVE-2024-3095
TCP
type confusion
CVE-2024-1800
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »