Lucene search
K

7 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 3:0 a.m.4 views

CVE-2023-1562

Mattermost fails to check the "Show Full Name" setting when rendering the result for the /plugins/focalboard/api/v2/users API call, allowing an attacker to learn the full name of a board owner...

4.3CVSS6.9AI score0.00464EPSS
Exploits0References1
Prion
Prion
added 2023/11/27 10:15 a.m.11 views

Design/Logic Flaw

Mattermost fails to properly validate the "Show Full Name" option in a few endpoints in Mattermost Boards, allowing a member to get the full name of another user even if the Show Full Name option was disabled...

4CVSS7AI score0.00506EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2023/11/27 12:0 a.m.4 views

PT-2023-29463 · Unknown · Mattermost

Name of the Vulnerable Software and Affected Versions: Mattermost affected versions not specified Description: The issue arises from the improper validation of the "Show Full Name" option in certain endpoints within Mattermost Boards. This allows a member to obtain the full name of another user,...

4.3CVSS4.1AI score0.00506EPSS
Exploits0References7
CNNVD
CNNVD
added 2023/11/27 12:0 a.m.5 views

Mattermost Security Vulnerabilities

Mattermost is an open source collaboration platform from Mattermost, Inc. in the United States. Mattermost suffers from a security vulnerability that stems from an inability to properly validate the "Show Full Name" option in some endpoints in Mattermost Boards, allowing members to obtain another...

4.3CVSS6.6AI score0.00506EPSS
Exploits0References1
OSV
OSV
added 2023/10/02 11:15 a.m.16 views

CVE-2023-5160

Mattermost fails to check the Show Full Name option at the /api/v4/teams/TEAMID/top/teammembers endpoint allowing a member to get the full name of another user even if the Show Full Name option was disabled...

4.3CVSS7AI score
Exploits0References1
CNNVD
CNNVD
added 2023/10/02 12:0 a.m.5 views

Mattermost Security Vulnerabilities

Mattermost is an open source collaboration platform from Mattermost, Inc. in the United States. Mattermost suffers from a security vulnerability that stems from an inability to check the Show Full Name option on the /api/v4/teams/TEAMID/top/TEAMmembers endpoint...

4.3CVSS6.7AI score0.0036EPSS
Exploits0References2
OSV
OSV
added 2023/03/22 11:15 a.m.13 views

CVE-2023-1562

Mattermost fails to check the "Show Full Name" setting when rendering the result for the /plugins/focalboard/api/v2/users API call, allowing an attacker to learn the full name of a board owner...

4.3CVSS7AI score
Exploits0References1
Rows per page
Query Builder