Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mattermost mattermost server vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2017-18899
An issue exists in Mattermost Server prior to 4.2.0, 4.1.1, and 4.0.5. It mishandles IP-based rate limiting.
Mattermost Mattermost Server
Mattermost Mattermost Server 4.2.0
5
CVSSv2
CVE-2017-18901
An issue exists in Mattermost Server prior to 4.1.0, 4.0.4, and 3.10.3. It allows malicious users to discover a team invite ID by requesting a JSON document.
Mattermost Mattermost Server
5
CVSSv2
CVE-2017-18902
An issue exists in Mattermost Server prior to 4.1.0, 4.0.4, and 3.10.3. It allows malicious users to discover team invite IDs via team API endpoints.
Mattermost Mattermost Server
5
CVSSv2
CVE-2017-18873
An issue exists in Mattermost Server prior to 4.3.0, 4.2.1, and 4.1.2. It allows malicious users to cause a denial of service (channel invisibility) via a misformatted post.
Mattermost Mattermost Server
Mattermost Mattermost Server 4.3.0
5
CVSSv2
CVE-2019-20875
An issue exists in Mattermost Server prior to 5.9.0, 5.8.1, 5.7.3, and 4.10.8. It allows a password reset to proceed while an e-mail address is being changed.
Mattermost Mattermost Server
Mattermost Mattermost Server 5.9.0
5
CVSSv2
CVE-2019-20877
An issue exists in Mattermost Server prior to 5.9.0, 5.8.1, 5.7.3, and 4.10.8. It allows malicious users to obtain sensitive information about whether someone has 2FA enabled.
Mattermost Mattermost Server
Mattermost Mattermost Server 5.9.0
5
CVSSv2
CVE-2019-20880
An issue exists in Mattermost Server prior to 5.8.0, 5.7.2, 5.6.5, and 4.10.7. It allows malicious users to cause a denial of service (memory consumption) via OpenGraph.
Mattermost Mattermost Server
Mattermost Mattermost Server 5.8.0
5
CVSSv2
CVE-2019-20882
An issue exists in Mattermost Server prior to 5.8.0. It does not honor the domain requirement when processing a join request for an open team.
Mattermost Mattermost Server
5
CVSSv2
CVE-2019-20884
An issue exists in Mattermost Server prior to 5.8.0. It allows malicious users to partially attach a file to more than one post.
Mattermost Mattermost Server
5
CVSSv2
CVE-2019-20885
An issue exists in Mattermost Server prior to 5.8.0. It does not always generate a robots.txt file.
Mattermost Mattermost Server
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »