Rocket.Chat up to and including 3.4.2 allows XSS where an attacker can send a specially crafted message to a channel or in a direct message to the client which results in remote code execution on the client side.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
rocket.chat rocket.chat |