When creating a playbook run via the /dialog API, Mattermost fails to validate all parameters, allowing an authenticated malicious user to edit an arbitrary channel post.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mattermost mattermost |
||
mattermost mattermost 7.10.0 |