Mattermost fails to properly check a redirect URL parameter allowing for an open redirect was possible when the user clicked "Back to Mattermost" after providing a invalid custom url scheme in /oauth/{service}/mobile_login?redirect_to=
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mattermost mattermost |
||
mattermost mattermost 9.1.0 |