Mattermost fails to sanitize ephemeral error messages, allowing an attacker to obtain arbitrary message contents by a specially crafted /groupmsg command.
CPE | Name | Operator | Version |
---|---|---|---|
mattermost | ge | 7.9.0 | |
mattermost | le | 7.9.3 | |
mattermost | ge | 7.8.0 | |
mattermost | le | 7.8.4 | |
mattermost | ge | 7.1.0 | |
mattermost | le | 7.1.9 | |
mattermost | eq | 7.10.0 |