CVE-2016-11083
published 2020-06-19CVE-2016-11083: An issue was discovered in Mattermost Server before 2.2.0. It allows XSS because it configures files to be opened in a browser window.
medium6.1CVSS 3.1
AVNACLPRNUIRSCCLILAN
An issue was discovered in Mattermost Server before 2.2.0. It allows XSS because it configures files to be opened in a browser window.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| github.com | mattermost_mattermost-server | >= 0 < 2.2.0 | 2.2.0 |
| github.com | mattermost_mattermost-server | >= 0 < 2.2.0+incompatible | 2.2.0+incompatible |
| mattermost | mattermost_server | < 2.2.0 | 2.2.0 |