An issue was discovered in Mattermost Server before 4.3.0, 4.2.1, and 4.1.2. It allows SQL injection during the fetching of multiple posts.
Published at: June 19, 2020 at 03:15PM
View on website
Etiqueta: government
New vulnerability on the NVD: CVE-2017-18889
An issue was discovered in Mattermost Server before 4.3.0, 4.2.1, and 4.1.2. An attacker could create fictive system-message posts via webhooks and slash commands, in the v3 or v4 REST API.
Published at: June 19, 2020 at 03:15PM
View on website
New vulnerability on the NVD: CVE-2017-18890
An issue was discovered in Mattermost Server before 4.3.0, 4.2.1, and 4.1.2. It allows an attacker to create a button that, when pressed by a user, launches an API request.
Published at: June 19, 2020 at 03:15PM
View on website
New vulnerability on the NVD: CVE-2017-18891
An issue was discovered in Mattermost Server before 4.2.0, 4.1.1, and 4.0.5. It allows Phishing because an error page can have a link.
Published at: June 19, 2020 at 03:15PM
View on website
New vulnerability on the NVD: CVE-2017-18892
An issue was discovered in Mattermost Server before 4.2.0, 4.1.1, and 4.0.5. E-mail templates can have a field in which HTML content is not neutralized.
Published at: June 19, 2020 at 03:15PM
View on website
Educ Arte Económico 