Github.Com Mattermost Mattermost-Server vulnerabilities
222 known vulnerabilities affecting github.com/mattermost_mattermost-server.
Total CVEs
222
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL10HIGH18MEDIUM100LOW22UNKNOWN72
Vulnerabilities
Page 12 of 12
CVE-2017-18891MEDIUM≥ 0, < 4.0.5≥ 4.1.0, < 4.1.1+1 more2022-05-24
CVE-2017-18891 [MEDIUM] Mattermost Server does not safeguard against phishing via error page links
Mattermost Server does not safeguard against phishing via error page links
An issue was discovered in Mattermost Server before 4.2.0, 4.1.1, and 4.0.5. It allows Phishing because an error page can have a link.
ghsaosv
CVE-2016-11077LOW≥ 0, < 3.0.02022-05-24
CVE-2016-11077 [LOW] CWE-732 Mattermost Server allows System Admin to modify LDAP account names and email addresses
Mattermost Server allows System Admin to modify LDAP account names and email addresses
An issue was discovered in Mattermost Server before 3.0.0. It has a superfluous API in which the System Admin can change the account name and e-mail address of an LDAP account.
ghsaosv
← Previous12 / 12