CVE-2016-11078
published 2020-06-19CVE-2016-11078: An issue was discovered in Mattermost Server before 3.0.0. It potentially allows attackers to obtain sensitive information (credential fields within…
medium6.5CVSS 3.1
AVNACLPRLUINSUCHINAN
An issue was discovered in Mattermost Server before 3.0.0. It potentially allows attackers to obtain sensitive information (credential fields within config.json) via the System Console UI.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| github.com | mattermost_mattermost-server | >= 0 < 3.0.0 | 3.0.0 |
| github.com | mattermost_mattermost-server | >= 0 < 3.0.0+incompatible | 3.0.0+incompatible |
| mattermost | mattermost_server | < 3.0.0 | 3.0.0 |