Lucene search
K

133 matches found

OSV
OSV
added 2025/08/11 9:31 p.m.4 views

GHSA-VC77-C2HX-H5X2 Mattermost Confluence Plugin has Improper Check for Unusual or Exceptional Conditions

Mattermost Confluence Plugin versions 1.5.0 fails to handle unexpected request bodies, allowing attackers to crash the plugin via constant hits to the update channel subscription endpoint with an invalid request body...

7.5CVSS7AI score0.00312EPSS
Exploits0References3
Snyk
Snyk
added 2025/08/11 9:31 p.m.2 views

Improper Check for Unusual or Exceptional Conditions

Overview Affected versions of this package are vulnerable to Improper Check for Unusual or Exceptional Conditions via the constant hits to the server webhook endpoint with an invalid request body. An attacker can cause the plugin to crash by repeatedly sending invalid request bodies to the...

8.2CVSS7AI score0.00264EPSS
Exploits0References2
Snyk
Snyk
added 2025/08/11 9:31 p.m.2 views

Improper Check for Unusual or Exceptional Conditions

Overview Affected versions of this package are vulnerable to Improper Check for Unusual or Exceptional Conditions due to improper handling of unexpected request bodies in the update channel subscription endpoint. An attacker can cause the plugin to crash by repeatedly sending invalid request bodi...

8.7CVSS7AI score0.00312EPSS
Exploits0References2
Snyk
Snyk
added 2025/08/11 9:31 p.m.2 views

Improper Validation of Specified Type of Input

Overview Affected versions of this package are vulnerable to Improper Validation of Specified Type of Input via the create channel subscription endpoint when unexpected request bodies are not properly handled. An attacker can cause the plugin to crash by repeatedly sending invalid request bodies...

8.7CVSS7AI score0.00312EPSS
Exploits0References2
Snyk
Snyk
added 2025/08/11 9:31 p.m.1 views

Improper Check for Unusual or Exceptional Conditions

Overview Affected versions of this package are vulnerable to Improper Check for Unusual or Exceptional Conditions via the webhook endpoints. An attacker can cause the plugin to crash by repeatedly sending invalid request bodies to the server. Remediation Upgrade...

7.5CVSS7AI score0.00275EPSS
Exploits0References2
Github Security Blog
Github Security Blog
added 2025/08/11 9:31 p.m.6 views

Mattermost Confluence Plugin has Improper Check for Unusual or Exceptional Conditions

Mattermost Confluence Plugin versions 1.5.0 fails to handle unexpected request bodies, allowing attackers to crash the plugin via constant hits to the update channel subscription endpoint with an invalid request body...

7.5CVSS7AI score0.00312EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2025/08/11 7:15 p.m.5 views

CVE-2025-54525

Mattermost Confluence Plugin version 1.5.0 fails to handle unexpected request body which allows attackers to crash the plugin via constant hit to create channel subscription endpoint with an invalid request body...

7.5CVSS0.00312EPSS
Exploits0References1
NVD
NVD
added 2025/08/11 7:15 p.m.5 views

CVE-2025-54463

Mattermost Confluence Plugin version 1.5.0 fails to handle unexpected request body which allows attackers to crash the plugin via constant hit to server webhook endpoint with an invalid request body...

7.5CVSS0.00275EPSS
Exploits0References1
NVD
NVD
added 2025/08/11 7:15 p.m.5 views

CVE-2025-52931

Mattermost Confluence Plugin version 1.5.0 fails to handle unexpected request body which allows attackers to crash the plugin via constant hit to update channel subscription endpoint with an invalid request body...

7.5CVSS0.00312EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/08/11 6:57 p.m.6 views

CVE-2025-54525 Unexpected input to Create Channel Subscription endpoint causes DoS in Mattermost Confluence Plugin

Mattermost Confluence Plugin version 1.5.0 fails to handle unexpected request body which allows attackers to crash the plugin via constant hit to create channel subscription endpoint with an invalid request body...

7.5CVSS0.00312EPSS
Exploits0References1
OSV
OSV
added 2025/08/11 6:57 p.m.4 views

CVE-2025-54525 Unexpected input to Create Channel Subscription endpoint causes DoS in Mattermost Confluence Plugin

Mattermost Confluence Plugin version 1.5.0 fails to handle unexpected request body which allows attackers to crash the plugin via constant hit to create channel subscription endpoint with an invalid request body...

7.5CVSS7.1AI score0.00312EPSS
Exploits0References4
CVE
CVE
added 2025/08/11 6:57 p.m.33 views

CVE-2025-54525

Mattermost Confluence Plugin (github.com/mattermost/mattermost-plugin-confluence) is affected by CVE-2025-54525. Versions older than 1.5.0 fail to properly handle an unexpected request body to the create channel subscription endpoint, which can cause the plugin to crash (DoS) under constant inval...

7.5CVSS7.1AI score0.00312EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2025/08/11 6:57 p.m.130 views

CVE-2025-54463

Mattermost Confluence Plugin (github.com/mattermost/mattermost-plugin-confluence) versions

7.5CVSS7.1AI score0.00275EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/08/11 6:57 p.m.1 views

CVE-2025-54463 Unexpected Input to Cloud Webhook endpoint Causes DoS in Mattermost Confluence Plugin

Mattermost Confluence Plugin version 1.5.0 fails to handle unexpected request body which allows attackers to crash the plugin via constant hit to server webhook endpoint with an invalid request body...

5.9CVSS7.1AI score0.00275EPSS
Exploits0References1
CVE
CVE
added 2025/08/11 6:57 p.m.131 views

CVE-2025-53514

Mattermost Confluence Plugin (versions

5.9CVSS7.1AI score0.00264EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2025/08/11 6:57 p.m.3 views

CVE-2025-53514 Unexpected Input to Server Webhook endpoint Causes DoS in Mattermost Confluence Plugin

Mattermost Confluence Plugin version 1.5.0 fails to handle unexpected request body which allows attackers to crash the plugin via constant hit to server webhook endpoint with an invalid request body...

5.9CVSS6.3AI score0.00264EPSS
Exploits0References4
CVE
CVE
added 2025/08/11 6:57 p.m.26 views

CVE-2025-52931

Mattermost Confluence Plugin has a DoS vulnerability (CVE-2025-52931) in versions

7.5CVSS7.1AI score0.00312EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/08/11 6:57 p.m.1 views

CVE-2025-52931 Unexpected input to Update Channel Subscription endpoint causes DoS in Mattermost Confluence Plugin

Mattermost Confluence Plugin version 1.5.0 fails to handle unexpected request body which allows attackers to crash the plugin via constant hit to update channel subscription endpoint with an invalid request body...

7.5CVSS7.1AI score0.00312EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/08/11 6:57 p.m.6 views

CVE-2025-52931 Unexpected input to Update Channel Subscription endpoint causes DoS in Mattermost Confluence Plugin

Mattermost Confluence Plugin version 1.5.0 fails to handle unexpected request body which allows attackers to crash the plugin via constant hit to update channel subscription endpoint with an invalid request body...

7.5CVSS0.00312EPSS
Exploits0References1
OSV
OSV
added 2025/08/11 6:57 p.m.3 views

CVE-2025-52931 Unexpected input to Update Channel Subscription endpoint causes DoS in Mattermost Confluence Plugin

Mattermost Confluence Plugin version 1.5.0 fails to handle unexpected request body which allows attackers to crash the plugin via constant hit to update channel subscription endpoint with an invalid request body...

7.5CVSS7.1AI score0.00312EPSS
Exploits0References4
Rows per page
Query Builder