Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Domain Restriction Bypass on Registration
Vulnerability Description
Mattermost versions 10.0.x <= 10.0.1, 10.1.x <= 10.1.1, 9.11.x <= 9.11.3, 9.5.x <= 9.5.11 fail to properly validate email addresses which allows an unauthenticated user to bypass email domain restrictions via carefully crafted input on email registration.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N
Vulnerability Type
对因果或异常条件的不恰当检查
Vulnerability Title
Mattermost 安全漏洞
Vulnerability Description
Mattermost是美国Mattermost公司的一个开源协作平台。 Mattermost存在安全漏洞,该漏洞源于未正确验证电子邮件地址,这使得未经身份验证的用户可以通过精心设计的电子邮件注册输入绕过电子邮件域限制。受影响版本如下:10.0.x至10.0.1版本、10.1.x至10.1.1版本、9.11.x至9.11.3版本和9.5.x至9.5.11版本。
CVSS Information
N/A
Vulnerability Type
N/A