3 matches found
Mattermost Server vulnerable to Cross-site Scripting through file preview feature
An issue was discovered in Mattermost Server before 3.5.1. XSS can occur via file preview...
Zammad Security Vulnerability
Zammad is a suite of ticket management software from the German company Zammad. A security vulnerability exists in versions prior to Zammad 3.5.1 that stems from the fact that the default registration role newly created user can be a privileged role configured by an administrator. This behavior w...
Zammad 安全漏洞
Zammad is a Web-based open source helpdesk/customer support system. An access control bypass vulnerability exists in Zammad versions prior to 3.5.1. An Agent with Customer privileges in a group can exploit this vulnerability to bypass access control to internal Articles via the Ticket detail view...