1121 matches found
CVE-2020-24364
MineTime through 1.8.5 allows arbitrary command execution via the notes field in a meeting. Could lead to RCE via meeting invite...
CVE-2020-24364
MineTime (version 1.8.5 and earlier) is affected by CVE-2020-24364. The vulnerability allows arbitrary command execution via the notes field in a meeting invitation, potentially leading to remote code execution. The CVSS metrics indicate a high-severity impact (CVSSv3.1 HR, network attack vector,...
Zulip Server Access Control Error Vulnerability
Zulip is a powerful open source group chat application that combines the immediacy of live chat with the productivity benefits of threaded conversations.Zulip Server is the Zulip server. An access control error vulnerability exists in Zulip Server versions prior to 2.1.5. The vulnerability stems...
CVE-2020-13280
For GitLab before 13.0.12, 13.1.6, 13.2.3 a memory exhaustion flaw exists due to excessive logging of an invite email error message...
CVE-2020-13280
For GitLab before 13.0.12, 13.1.6, 13.2.3 a memory exhaustion flaw exists due to excessive logging of an invite email error message...
Memory corruption
For GitLab before 13.0.12, 13.1.6, 13.2.3 a memory exhaustion flaw exists due to excessive logging of an invite email error message...
CVE-2020-13280
For GitLab before 13.0.12, 13.1.6, 13.2.3 a memory exhaustion flaw exists due to excessive logging of an invite email error message...
UBUNTU-CVE-2020-13280
For GitLab before 13.0.12, 13.1.6, 13.2.3 a memory exhaustion flaw exists due to excessive logging of an invite email error message...
CVE-2020-13280
Removed by vendor...
CVE-2020-13280
CVE-2020-13280 affects GitLab before versions 13.0.12, 13.1.6, and 13.2.3. The vulnerability is a memory-exhaustion flaw caused by excessive logging of an invite email error message. The public sources in the connected documents consistently describe this issue as a memory-related impact, with no...
CVE-2020-13280
For GitLab before 13.0.12, 13.1.6, 13.2.3 a memory exhaustion flaw exists due to excessive logging of an invite email error message...
PT-2020-13421 · Gitlab · Gitlab
Name of the Vulnerable Software and Affected Versions: GitLab versions prior to 13.0.12 GitLab versions prior to 13.1.6 GitLab versions prior to 13.2.3 Description: A memory exhaustion flaw exists due to excessive logging of an invite email error message. Recommendations: For versions prior to...
Mattermost Server Injection Vulnerability (CNVD-2020-41171)
Mattermost Server is the United States Mattermost company's set of open source messaging platform. A security vulnerability exists in Mattermost Server versions prior to 5.1. The vulnerability can be exploited to cause a denial of service with the 'invitepeople' slash / command...
Unspecified Vulnerability in Mattermost Server (CNVD-2020-41174)
Mattermost Server is the United States Mattermost company's set of open source messaging platform. A security vulnerability exists in Mattermost Server versions prior to 4.8.1, 4.7.4 and 4.6.3. An attacker can use this vulnerability to obtain the inviteid of a team and then repeatedly ask...
CVE-2017-18902
An issue was discovered in Mattermost Server before 4.1.0, 4.0.4, and 3.10.3. It allows attackers to discover team invite IDs via team API endpoints...
Design/Logic Flaw
An issue was discovered in Mattermost Server before 4.1.0, 4.0.4, and 3.10.3. It allows attackers to discover a team invite ID by requesting a JSON document...
Code injection
An issue was discovered in Mattermost Server before 4.1.0, 4.0.4, and 3.10.3. It allows attackers to discover team invite IDs via team API endpoints...
CVE-2017-18901
Mattermost Server contains an information-disclosure issue (CVE-2017-18901) where an attacker can discover a private team invite ID by requesting a JSON document. Affected versions: Mattermost Server before 4.1.0, 4.0.4, and 3.10.3. Root cause: exposure of invite identifiers through a JSON fetch....
CVE-2017-18901
An issue was discovered in Mattermost Server before 4.1.0, 4.0.4, and 3.10.3. It allows attackers to discover a team invite ID by requesting a JSON document...
CVE-2018-21261
An issue was discovered in Mattermost Server before 4.8.1, 4.7.4, and 4.6.3. An e-mail invite accidentally included the team inviteid, which leads to unintended excessive invitation privileges...