Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
githubGitHub Advisory DatabaseGHSA-4GHX-8JW8-P76Q
HistoryNov 27, 2023 - 12:30 p.m.

Mattermost Open Redirect vulnerability

2023-11-2712:30:54
CWE-601
GitHub Advisory Database
github.com
4
mattermost
open redirect
vulnerability
redirect url
parameter
invalid custom url scheme
oauth

7 High

AI Score

Confidence

Low

0.0005 Low

EPSS

Percentile

15.9%

JSON

Mattermost fails to properly check a redirect URL parameter allowing for anΒ open redirect was possible when the user clicked β€œBack to Mattermost” after providing a invalid custom url scheme in /oauth/{service}/mobile_login?redirect_to=

Related

veracode 1
prion 1
osv 2
cvelist 1
cnvd 1
cve 1
nessus 1
veracode
veracode
Open Redirect
2023-11-28 08:09:41
prion
prion
Open redirect
2023-11-27 10:15:00
osv
osv
Mattermost Open Redirect vulnerability
2023-11-27 12:30:54
CVE-2023-47168
2023-11-27 10:15:08
cvelist
cvelist
CVE-2023-47168 Open redirect in /oauth/<service>/mobile_login?redirect_to=
2023-11-27 09:12:52
cnvd
cnvd
Mattermost Open Redirect Vulnerability
2023-11-30 00:00:00
cve
cve
CVE-2023-47168
2023-11-27 10:15:08
nessus
nessus
Mattermost Server < 7.8.13 / 8.x < 8.1.4 / 9.0.x < 9.0.2 / 9.1.0 Multiple Vulnerabilities
2023-11-10 00:00:00

7 High

AI Score

Confidence

Low

0.0005 Low

EPSS

Percentile

15.9%

JSON
Related for GHSA-4GHX-8JW8-P76Q
veracode1prion1osv2cvelist1cnvd1cve1nessus1