An issue was discovered in Mattermost Server before 4.3.0, 4.2.1, and 4.1.2. XSS attacks could occur against an OAuth 2.0 allow/deny page.
Published at: June 19, 2020 at 01:15PM
View on website
Etiqueta: government
New vulnerability on the NVD: CVE-2018-21248
An issue was discovered in Mattermost Server before 5.4.0. It mishandles possession of superfluous authentication credentials.
Published at: June 19, 2020 at 01:15PM
View on website
New vulnerability on the NVD: CVE-2018-21249
An issue was discovered in Mattermost Server before 5.3.0. It mishandles timing.
Published at: June 19, 2020 at 01:15PM
View on website
New vulnerability on the NVD: CVE-2018-21250
An issue was discovered in Mattermost Server before 5.2.2, 5.1.2, and 4.10.4. It allows remote attackers to cause a denial of service (memory consumption) via crafted image dimensions.
Published at: June 19, 2020 at 01:15PM
View on website
New vulnerability on the NVD: CVE-2018-21251
An issue was discovered in Mattermost Server before 5.2 and 5.1.1. Authorization could be bypassed if the channel name were not the same in the params and the body.
Published at: June 19, 2020 at 01:15PM
View on website
Educ Arte Económico 