CVE-2019-20865
published 2020-06-19CVE-2019-20865: An issue was discovered in Mattermost Server before 5.12.0, 5.11.1, 5.10.2, 5.9.2, and 4.10.10. The login page allows CSRF.
high8.8CVSS 3.1
AVNACLPRNUIRSUCHIHAH
An issue was discovered in Mattermost Server before 5.12.0, 5.11.1, 5.10.2, 5.9.2, and 4.10.10. The login page allows CSRF.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| mattermost | mattermost_server | < 4.10.10 | 4.10.10 |
| mattermost | mattermost_server | — | — |
| mattermost | mattermost_server | >= 5.10.0 < 5.10.2 | 5.10.2 |
| mattermost | mattermost_server | >= 5.11.0 < 5.11.1 | 5.11.1 |
| mattermost | mattermost_server | >= 5.9.0 < 5.9.2 | 5.9.2 |