Data

Tools

Indexes

Applications

Experiments

Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

go

github.com/mattermost/mattermost-server

go · Repository · Package

Security Advisories for github.com/mattermost/mattermost-server in go

Low
13 days ago

Mattermost boards plugin fails to restrict download access to files GSA_kwCzR0hTQS1mNzJnLTUydjctbWczcM4ABMZr

go github.com/mattermost/mattermost-server, github.com/mattermost/mattermost/server/v8, github.com/mattermost/mattermost-plugin-boards
High
13 days ago

Mattermost Path Traversal vulnerability GSA_kwCzR0hTQS1xeDNmLTZ2cTMtOGo4bc4ABMZt

go github.com/mattermost/mattermost-server
Low
17 days ago

Mattermost Open Redirect vulnerability GSA_kwCzR0hTQS1obTk1LWp4NjYtZzJnaM4ABMER

go github.com/mattermost/mattermost-server, github.com/mattermost/mattermost/server/v8
Moderate
17 days ago

Mattermost makes Use of Weak Hash GSA_kwCzR0hTQS05cDkyLXg3N3ctOWZ3Ms4ABMEa

go github.com/mattermost/mattermost/server/v8, github.com/mattermost/mattermost-server
High
17 days ago

Mattermost Open Redirect vulnerability GSA_kwCzR0hTQS02OWo4LXByeDItdng5OM4ABMEQ

go github.com/mattermost/mattermost/server/v8, github.com/mattermost/mattermost-server
Moderate
17 days ago

Mattermost Missing Authorization vulnerability GSA_kwCzR0hTQS0zdmNtLWM0MnAtM2hoZs4ABMEP

go github.com/mattermost/mattermost-server, github.com/mattermost/mattermost/server/v8
Moderate
about 1 month ago

Mattermost has Potential Server Crash due to Unvalidated Import Data GSA_kwCzR0hTQS1oNDY5LTRmY2YtcDIzaM4ABLUR

go github.com/mattermost/mattermost-server, github.com/mattermost/mattermost/server/v8
Moderate
about 1 month ago

Mattermost Fails to Sanitize File Names GSA_kwCzR0hTQS1wajZmLXJjOTQtZ3c1M84ABLUh

go github.com/mattermost/mattermost/server/v8, github.com/mattermost/mattermost-server
Moderate
about 1 month ago

Mattermost Fails to Sanitize Path Traversal Sequences GSA_kwCzR0hTQS14NjdjLXY4anItcDI5cs4ABLTm

go github.com/mattermost/mattermost/server/v8, github.com/mattermost/mattermost-server
Low
about 1 month ago

Mattermost Fails to Properly Validate Team Role Modification GSA_kwCzR0hTQS00Mjc2LWNtOGMtNzg4aM4ABLTj

go github.com/mattermost/mattermost/server/v8, github.com/mattermost/mattermost-server
Moderate
about 1 month ago

Mattermost Fails to Validate File Paths GSA_kwCzR0hTQS1ncTNyLTU4MzMtNTUzMs4ABLTi

go github.com/mattermost/mattermost/server/v8, github.com/mattermost/mattermost-server
Low
about 1 month ago

Mattermost Lack of Access Control Validation GSA_kwCzR0hTQS1wd3ZyLWdycWctN3ZwMs4ABLTo

go github.com/mattermost/mattermost/server/v8, github.com/mattermost/mattermost-server
Low
about 1 month ago

Mattermost Server SSRF Vulnerability via the Agents Plugin GSA_kwCzR0hTQS12cXdoLTVqaGgtdmM5cM4ABLTk

go github.com/mattermost/mattermost/server/v8, github.com/mattermost/mattermost-server
Moderate
about 1 month ago

Mattermost Fails to Validate Remote Cluster Upload Sessions GSA_kwCzR0hTQS1xNDUzLTYzOGMtaDRtcs4ABLTn

go github.com/mattermost/mattermost/server/v8, github.com/mattermost/mattermost-server
Moderate
about 1 month ago

Mattermost Does Not Sanitize the Team Invite ID GSA_kwCzR0hTQS1xajQ3LXc5ZjItcWc0NM4ABLTl

go github.com/mattermost/mattermost-server
Moderate
3 months ago

Mattermost Path Traversal vulnerability GSA_kwCzR0hTQS13dncyLTNqaDQtNGMzOc4ABKRq

go github.com/mattermost/mattermost/server/v8, github.com/mattermost/mattermost-server
Low
3 months ago

Mattermost has Insufficiently Protected Credentials GSA_kwCzR0hTQS00ZndqLTg1OTUtd3AyNc4ABKRo

go github.com/mattermost/mattermost/server/v8, github.com/mattermost/mattermost-server
Moderate
3 months ago

Mattermost Missing Authentication for Critical Function GSA_kwCzR0hTQS03aDM0LTljaHItNThxaM4ABKRa

go github.com/mattermost/mattermost/server/v8, github.com/mattermost/mattermost-server
Moderate
3 months ago

Mattermost Incorrect Authorization vulnerability GSA_kwCzR0hTQS13Z3ZwLWpqNHctODhoZs4ABJkw

go github.com/mattermost/mattermost/server/v8, github.com/mattermost/mattermost-server
Moderate
3 months ago

Mattermost Incorrect Authorization vulnerability GSA_kwCzR0hTQS12OGZyLXZ4bXctNm1mNs4ABJkm

go github.com/mattermost/mattermost/server/v8, github.com/mattermost/mattermost-server
Moderate
3 months ago

Mattermost allows an unauthorized Guest user access to Playbook GSA_kwCzR0hTQS00NTc4LTZnamgtZjJqbc4ABJTD

go github.com/mattermost/mattermost/server/v8, github.com/mattermost/mattermost-server
Moderate
3 months ago

Mattermost allows unauthorized channel member management through playbook runs GSA_kwCzR0hTQS1xd3dtLWM1ODItODJyeM4ABJTJ

go github.com/mattermost/mattermost/server/v8, github.com/mattermost/mattermost-server
Critical
3 months ago

Mattermost allows authenticated users to write files to arbitrary locations GSA_kwCzR0hTQS1xaDU4LTl2M2otd2NqY84ABJSQ

go github.com/mattermost/mattermost/server/v8, github.com/mattermost/mattermost-server
Low
4 months ago

Mattermost allows guest users to view information about public teams they are not members of GSA_kwCzR0hTQS1qd2h3LXhmNXYtcWd4Y84ABI-z

go github.com/mattermost/mattermost-server, github.com/mattermost/mattermost/server/v8
Moderate
4 months ago

Mattermost allows authenticated administrator to execute LDAP search filter injection GSA_kwCzR0hTQS00cjY3LTR4NHAtZnByZ84ABI-v

go github.com/mattermost/mattermost-server, github.com/mattermost/mattermost/server/v8
Moderate
6 months ago

Mattermost Fails to Restrict Certain Operations on System Admins GSA_kwCzR0hTQS0zMjJ2LXZoMmctcXZwds4ABGvR

go github.com/mattermost/mattermost/server/v8, github.com/mattermost/mattermost-server
Moderate
7 months ago

Mattermost allows members with permission to convert public channels to private and convert private to public GSA_kwCzR0hTQS1oNXY5LXh3MmctN2hycc4ABFxA

go github.com/mattermost/mattermost/server/v8, github.com/mattermost/mattermost-server
Moderate
7 months ago

Mattermost Fails to Properly Perform Viewer Role Authorization GSA_kwCzR0hTQS1mcXJxLXhteGotdjQ3eM4ABFpb

go github.com/mattermost/mattermost-server, github.com/mattermost/mattermost/server/v8
Low
over 1 year ago

Mattermost allows team admins to promote guests to team admins GSA_kwCzR0hTQS01Zmg3LTdtdzctbW14Nc4AA7VJ

go github.com/mattermost/mattermost-server
Moderate
over 1 year ago

Mattermost crashes web clients via a malformed custom status GSA_kwCzR0hTQS04Zjk5LWcycGoteDh3M84AA7VG

go github.com/mattermost/mattermost-server
Low
over 1 year ago

Mattermost fails to fully validate role changes GSA_kwCzR0hTQS01cXg5LTlmZmotNXI4Zs4AA7VE

go github.com/mattermost/mattermost-server
Moderate
over 1 year ago

Mattermost fails to limit the number of active sessions GSA_kwCzR0hTQS13ajM3LW1wcTkteHJjbc4AA7VH

go github.com/mattermost/mattermost-server
Low
over 1 year ago

Mattermost fails to limit the size of a request path GSA_kwCzR0hTQS1wMndxLTRnZ3AtNDVmM84AA7U_

go github.com/mattermost/mattermost-server
Moderate
over 1 year ago

Mattermost's detailed error messages reveal the full file path GSA_kwCzR0hTQS12eDk3LThxOHEtcWdxNc4AA7VB

go github.com/mattermost/mattermost-server
Moderate
almost 2 years ago

Mattermost password hash disclosure vulnerability GSA_kwCzR0hTQS1yNjdtLW1mN3YtcXA3as4AA29D

go github.com/mattermost/mattermost-server, github.com/mattermost/mattermost-server/v5, github.com/mattermost/mattermost-server/v6, github.com/mattermost/mattermost/server/v8
Moderate
over 2 years ago

Mattermost vulnerable to information disclosure GSA_kwCzR0hTQS04amhoLTNqZjItcGZ3cs4AAyez

go github.com/mattermost/mattermost-server/v6, github.com/mattermost/mattermost-server/v5, github.com/mattermost/mattermost-server
Moderate
over 2 years ago

Mattermost vulnerable to cross-site scripting (XSS) GSA_kwCzR0hTQS02M2YyLTY5NTktMnB4as4AAye3

go github.com/mattermost/mattermost-server/v6, github.com/mattermost/mattermost-server/v5, github.com/mattermost/mattermost-server
Moderate
over 2 years ago

Mattermost vulnerable to information disclosure GSA_kwCzR0hTQS0zd3E1LTNmNTYtdjV4Y84AAyex

go github.com/mattermost/mattermost-server, github.com/mattermost/mattermost-server/v6
Moderate
over 2 years ago

Mattermost fails to properly authentication inviter's permissions to private channel GSA_kwCzR0hTQS05aGo3LXY1NmctcmhmNs4AAyey

go github.com/mattermost/mattermost-server/v6, github.com/mattermost/mattermost-server/v5, github.com/mattermost/mattermost-server
Moderate
almost 3 years ago

Denial of service in Mattermost GSA_kwCzR0hTQS12NDJmLWhxNzgtOGM1bc4AAwBK

go github.com/mattermost/mattermost-server
Moderate
almost 3 years ago

Denial of service in Mattermost GSA_kwCzR0hTQS01anBoLXdycTctdjloZs4AAwBJ

go github.com/mattermost/mattermost-server
Moderate
over 3 years ago

Uncontrolled Resource Consumption in Mattermost server GSA_kwCzR0hTQS1nd3BmLTk1amMtNjNyds4AArUl

go github.com/mattermost/mattermost-server

Filter by Severity

Moderate 29 Low 10 High 2 Critical 1