Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| Mattermost | Mattermost | 11.7.0 ~ 11.7.2 | - |
| # | POC Description | Source Link | Shenlong Link |
|---|
No public POC found.
Login to generate AI POC| CVE-2026-6850 | 6.5 MEDIUM | Crafted message attachment causes client-side denial of service via markdown parser regex |
| CVE-2026-10106 | 6.5 MEDIUM | Unauthorized users can trigger interactive post actions in private channels via action coo |
| CVE-2026-9571 | 5.9 MEDIUM | Deactivated user accounts can continue to obtain valid OAuth access tokens via refresh tok |
| CVE-2026-9597 | 5.4 MEDIUM | Deactivated guest accounts can authenticate via magic-link token in Mattermost REST API lo |
| CVE-2026-10085 | 5.4 MEDIUM | Ordinary group/direct message member can enable group_constrained and remove all channel p |
| CVE-2026-9708 | 4.9 MEDIUM | Incoming webhook user attribution via unvalidated webhook owner |
| CVE-2026-6541 | 4.3 MEDIUM | Unscoped updates to other playbooks' metric configuration |
| CVE-2026-10103 | 4.3 MEDIUM | Authenticated remote cluster can modify or delete posts it does not own in Mattermost Conn |
| CVE-2026-9820 | 3.8 LOW | Mattermost schemes teams endpoint exposes private team invite IDs |
No comments yet