Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 384 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2022-2366 Incorrect defaults can cause attackers to bypass rate limitations MattermostMattermost Medium 5.6 2022-07-11 14:08:50 Deep Dive
CVE-2022-1982 A crafted SVG attachment can crash a Mattermost server MattermostMattermost Medium 4.3 2022-06-02 17:03:07 Deep Dive
CVE-2022-1548 Playbook members are allowed to escalate their membership privileges and perform actions restricted to playbook admins. MattermostMattermost Playbooks Low 3.7 2022-05-03 20:11:21 Deep Dive
CVE-2022-1384 Authorized users are allowed to install old plugin versions from the Marketplace MattermostMattermost Medium 4.7 2022-04-19 20:26:28 Deep Dive
CVE-2022-1385 Invitation Email is resent as a Reminder after invalidating pending email invites MattermostMattermost Low 3.7 2022-04-19 20:26:27 Deep Dive
CVE-2022-1332 Restricted custom admin role can bypass the restrictions and view the server logs and server config.json file contents MattermostMattermost Medium 4.3 2022-04-13 17:06:03 Deep Dive
CVE-2022-1333 A specifically drafted Playbook could trigger large amount of webhook requests leading to Denial of Service MattermostMattermost Playbooks Low 3.5 2022-04-13 17:06:01 Deep Dive
CVE-2022-1337 OOM DoS in Mattermost image proxy MattermostMattermost Medium 4.3 2022-04-13 17:06:00 Deep Dive
CVE-2022-1002 HTML Injection while inviting Guests MattermostMattermost Low 2.0 2022-03-18 18:00:22 Deep Dive
CVE-2022-1003 Sysadmin can override existing configs & bypass restrictions like EnableUploads MattermostMattermost Low 3.3 2022-03-18 18:00:21 Deep Dive
CVE-2022-0904 Stack overflow in document extractor in Mattermost MattermostMattermost Medium 4.3 2022-03-09 15:21:17 Deep Dive
CVE-2022-0903 Stack overflow in SAML login in Mattermost MattermostMattermost Medium 5.3 2022-03-09 15:17:27 Deep Dive
CVE-2022-0708 Team Creator's Email Address is disclosed to Team Members via one of the APIs MattermostMattermost Medium 4.3 2022-02-21 17:49:29 Deep Dive
CVE-2021-37864 Users can view the contents of an archived channel when access is explicitly denied by the system admin MattermostMattermost Low 2.6 2022-01-18 16:52:19 Deep Dive
CVE-2021-37867 Emails of all users are exposed via one of the Boards APIs MattermostMattermost Boards Medium 4.3 2022-01-18 16:52:17 Deep Dive
CVE-2021-37866 Session is not invalidated on server-side when user logged out of Boards MattermostMattermost Boards Medium 4.7 2022-01-18 16:52:16 Deep Dive
CVE-2021-37865 Server-side Denial of Service while processing a specifically crafted GIF file MattermostMattermost Medium 4.3 2022-01-18 16:51:48 Deep Dive
CVE-2021-37863 Mattermost 输入验证错误漏洞 MattermostMattermost Low 3.5 2021-12-17 16:10:30 Deep Dive
CVE-2021-37862 Mattermost 代码问题漏洞 MattermostMattermost Low 3.7 2021-12-17 16:10:29 Deep Dive
CVE-2021-37861 Mattermost 日志信息泄露漏洞 MattermostMattermost Medium 5.8 2021-12-09 21:32:28 Deep Dive