11 matches found
EUVD-2023-1677
Malicious code in bioql PyPI...
Unspecified Vulnerability in Mattermost (CNVD-2023-55041)
Mattermost is an open source collaboration platform from Mattermost, Inc. in the United States. A security vulnerability exists in the Mattermost Apps Framework, which can be exploited by an attacker to send a POST request to the application's Webhook path and modify the content of messages...
Mattermost Server Missing Authorization vulnerability
Mattermost Apps Framework fails to verify that a secret provided in the incoming webhook request allowing an attacker to modify the contents of the post sent by the Apps...
GHSA-455C-VQRF-MGHR Mattermost Server Missing Authorization vulnerability
Mattermost Apps Framework fails to verify that a secret provided in the incoming webhook request allowing an attacker to modify the contents of the post sent by the Apps...
CVE-2023-2783
Mattermost Apps Framework fails to verify that a secret provided in the incoming webhook request allowing an attacker to modify the contents of the post sent by the Apps...
CVE-2023-2783
Mattermost Apps Framework fails to verify that a secret provided in the incoming webhook request allowing an attacker to modify the contents of the post sent by the Apps...
Design/Logic Flaw
Mattermost Apps Framework fails to verify that a secret provided in the incoming webhook request allowing an attacker to modify the contents of the post sent by the Apps...
CVE-2023-2784 Apps Framework allows install requests from regular members via an internal path
Mattermost fails to verify if the requestor is a sysadmin or not, before allowing install requests to the Apps allowing a regular user send install requests to the Apps...
CVE-2023-2783
The CVE-2023-2783 issue affects Mattermost Apps Framework and involves failure to verify a secret in the incoming webhook request, allowing an attacker to modify the content of posts produced by Apps. It is a network-vector vulnerability with low privileges required and no user interaction, impac...
Mattermost 安全漏洞
Mattermost is an open source collaboration platform from Mattermost, Inc. in the United States. A security vulnerability exists in the Mattermost Apps Framework, which can be exploited by an attacker to send a POST request to the application's Webhook path and modify the content of messages...
CVE-2022-21566
CVE-2022-21566 affects Oracle E-Business Suite, specifically the Oracle Applications Framework Diagnostics component. Affected versions are 12.2.9–12.2.11. It allows unauthenticated, network-based access via HTTP, risking unauthorized data access within Oracle Applications Framework. MITRE/ATT&CK...