Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mattermost mattermost server vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2019-20875
An issue exists in Mattermost Server prior to 5.9.0, 5.8.1, 5.7.3, and 4.10.8. It allows a password reset to proceed while an e-mail address is being changed.
Mattermost Mattermost Server
Mattermost Mattermost Server 5.9.0
5
CVSSv2
CVE-2019-20880
An issue exists in Mattermost Server prior to 5.8.0, 5.7.2, 5.6.5, and 4.10.7. It allows malicious users to cause a denial of service (memory consumption) via OpenGraph.
Mattermost Mattermost Server
Mattermost Mattermost Server 5.8.0
5
CVSSv2
CVE-2019-20882
An issue exists in Mattermost Server prior to 5.8.0. It does not honor the domain requirement when processing a join request for an open team.
Mattermost Mattermost Server
5
CVSSv2
CVE-2019-20877
An issue exists in Mattermost Server prior to 5.9.0, 5.8.1, 5.7.3, and 4.10.8. It allows malicious users to obtain sensitive information about whether someone has 2FA enabled.
Mattermost Mattermost Server
Mattermost Mattermost Server 5.9.0
5
CVSSv2
CVE-2019-20884
An issue exists in Mattermost Server prior to 5.8.0. It allows malicious users to partially attach a file to more than one post.
Mattermost Mattermost Server
5
CVSSv2
CVE-2019-20885
An issue exists in Mattermost Server prior to 5.8.0. It does not always generate a robots.txt file.
Mattermost Mattermost Server
5
CVSSv2
CVE-2019-20886
An issue exists in Mattermost Server prior to 5.8.0. The first user is sometimes inadvertently a system admin.
Mattermost Mattermost Server
5
CVSSv2
CVE-2019-20888
An issue exists in Mattermost Server prior to 5.7, 5.6.3, 5.5.2, and 4.10.5. It allows malicious users to cause a denial of service (memory consumption) via an outgoing webhook or a slash command integration.
Mattermost Mattermost Server
Mattermost Mattermost Server 5.7.0
5
CVSSv2
CVE-2019-20889
An issue exists in Mattermost Server prior to 5.7, 5.6.3, 5.5.2, and 4.10.5. It mishandles permissions for user-access token creation.
Mattermost Mattermost Server
Mattermost Mattermost Server 5.7.0
5
CVSSv2
CVE-2019-20866
An issue exists in Mattermost Server prior to 5.12.0. Use of a Proxy HTTP header, rather than the source address in an IP packet header, for obtaining IP address information was mishandled.
Mattermost Mattermost Server
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »