4 matches found
CVE-2023-4106
Mattermost fails to check if the requesting user is a guest before performing different actions to public playbooks, resulting a guest being able to view, join, edit, export and archive public playbooks...
CVE-2023-4106
creationtimestamp| type| source ---|---|--- 2023-08-11 12:30:24+00:00| seen| https://t.me/cibsecurity/68330...
CVE-2023-4106 A guest user can perform various actions on public playbooks
Mattermost fails to check if the requesting user is a guest before performing different actions to public playbooks, resulting a guest being able to view, join, edit, export and archive public playbooks...
CVE-2023-4106
Mattermost Server contains CVE-2023-4106: a flaw where the server does not verify guest status before performing actions on public playbooks, allowing a guest to view, join, edit, export, and archive. The connected Nessus entry notes affected ranges: Mattermost Server < 7.8.8, < 7.9.6 (for ...