CVE-2016-11070
published 2020-06-19CVE-2016-11070: An issue was discovered in Mattermost Server before 3.1.0. It allows XSS via theme color-code values.
medium5.4CVSS 3.1
AVNACLPRLUIRSCCLILAN
An issue was discovered in Mattermost Server before 3.1.0. It allows XSS via theme color-code values.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| github.com | mattermost_mattermost-server | >= 0 < 3.1.0 | 3.1.0 |
| github.com | mattermost_mattermost-server | >= 0 < 3.1.0+incompatible | 3.1.0+incompatible |
| mattermost | mattermost_server | < 3.1.0 | 3.1.0 |