Lucene search
K

183 matches found

RedhatCVE
RedhatCVE
added 2025/08/13 7:31 p.m.3 views

CVE-2025-53514

Mattermost Confluence Plugin version 1.5.0 fails to handle unexpected request body which allows attackers to crash the plugin via constant hit to server webhook endpoint with an invalid request body...

5.9CVSS7.1AI score0.00264EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/08/13 7:31 p.m.3 views

CVE-2025-54463

Mattermost Confluence Plugin version 1.5.0 fails to handle unexpected request body which allows attackers to crash the plugin via constant hit to server webhook endpoint with an invalid request body...

7.5CVSS7.1AI score0.00275EPSS
Exploits0References1
Snyk
Snyk
added 2025/08/11 9:31 p.m.2 views

Improper Check for Unusual or Exceptional Conditions

Overview Affected versions of this package are vulnerable to Improper Check for Unusual or Exceptional Conditions via the constant hits to the server webhook endpoint with an invalid request body. An attacker can cause the plugin to crash by repeatedly sending invalid request bodies to the...

8.2CVSS7AI score0.00264EPSS
Exploits0References2
OSV
OSV
added 2025/08/11 9:31 p.m.4 views

GHSA-W92J-C6GR-HJ8R Mattermost Confluence Plugin has Improper Check for Unusual or Exceptional Conditions

Mattermost Confluence Plugin versions 1.5.0 fail to handle unexpected request bodies, allow\ing attackers to crash the plugin via constant hits to the server webhook endpoint with an invalid request body...

5.9CVSS7AI score0.00264EPSS
Exploits0References3
OSV
OSV
added 2025/08/11 9:31 p.m.2 views

GHSA-GJPM-6W34-PPVF Mattermost Confluence Plugin has Improper Check for Unusual or Exceptional Conditions

Mattermost Confluence Plugin versions 1.5.0 fails to handle unexpected request bodies, allowing attackers to crash the plugin via constant hits to the server webhook endpoint with an invalid request body...

5.9CVSS7AI score0.00275EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2025/08/11 9:31 p.m.7 views

Mattermost Confluence Plugin has Improper Check for Unusual or Exceptional Conditions

Mattermost Confluence Plugin versions 1.5.0 fails to handle unexpected request bodies, allowing attackers to crash the plugin via constant hits to the server webhook endpoint with an invalid request body...

7.5CVSS7AI score0.00275EPSS
Exploits0References4Affected Software1
NVD
NVD
added 2025/08/11 7:15 p.m.5 views

CVE-2025-54463

Mattermost Confluence Plugin version 1.5.0 fails to handle unexpected request body which allows attackers to crash the plugin via constant hit to server webhook endpoint with an invalid request body...

7.5CVSS0.00275EPSS
Exploits0References1
NVD
NVD
added 2025/08/11 7:15 p.m.9 views

CVE-2025-53514

Mattermost Confluence Plugin version 1.5.0 fails to handle unexpected request body which allows attackers to crash the plugin via constant hit to server webhook endpoint with an invalid request body...

5.9CVSS0.00264EPSS
Exploits0References1
CVE
CVE
added 2025/08/11 6:57 p.m.130 views

CVE-2025-54463

Mattermost Confluence Plugin (github.com/mattermost/mattermost-plugin-confluence) versions

7.5CVSS7.1AI score0.00275EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/08/11 6:57 p.m.1 views

CVE-2025-54463 Unexpected Input to Cloud Webhook endpoint Causes DoS in Mattermost Confluence Plugin

Mattermost Confluence Plugin version 1.5.0 fails to handle unexpected request body which allows attackers to crash the plugin via constant hit to server webhook endpoint with an invalid request body...

5.9CVSS7.1AI score0.00275EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/08/11 6:57 p.m.7 views

CVE-2025-54463 Unexpected Input to Cloud Webhook endpoint Causes DoS in Mattermost Confluence Plugin

Mattermost Confluence Plugin version 1.5.0 fails to handle unexpected request body which allows attackers to crash the plugin via constant hit to server webhook endpoint with an invalid request body...

5.9CVSS0.00275EPSS
Exploits0References1
OSV
OSV
added 2025/08/11 6:57 p.m.2 views

CVE-2025-54463 Unexpected Input to Cloud Webhook endpoint Causes DoS in Mattermost Confluence Plugin

Mattermost Confluence Plugin version 1.5.0 fails to handle unexpected request body which allows attackers to crash the plugin via constant hit to server webhook endpoint with an invalid request body...

5.9CVSS6.3AI score0.00275EPSS
Exploits0References4
CVE
CVE
added 2025/08/11 6:57 p.m.131 views

CVE-2025-53514

Mattermost Confluence Plugin (versions

5.9CVSS7.1AI score0.00264EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2025/08/11 6:57 p.m.3 views

CVE-2025-53514 Unexpected Input to Server Webhook endpoint Causes DoS in Mattermost Confluence Plugin

Mattermost Confluence Plugin version 1.5.0 fails to handle unexpected request body which allows attackers to crash the plugin via constant hit to server webhook endpoint with an invalid request body...

5.9CVSS6.3AI score0.00264EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/07/10 12:0 a.m.4 views

PT-2025-32577 · Mattermost · Mattermost Confluence Plugin

Name of the Vulnerable Software and Affected Versions: Mattermost Confluence Plugin versions prior to 1.5.0 Description: The Mattermost Confluence Plugin does not properly handle unexpected request bodies. Attackers can exploit this to crash the plugin by repeatedly sending invalid requests to th...

5.9CVSS7.2AI score0.00264EPSS
Exploits0References11
Positive Technologies
Positive Technologies
added 2025/07/10 12:0 a.m.5 views

PT-2025-32581 · WordPress · Mattermost Confluence Plugin

Name of the Vulnerable Software and Affected Versions: Mattermost Confluence Plugin versions prior to 1.5.0 Description: The Mattermost Confluence Plugin does not properly handle unexpected request bodies. Attackers can exploit this to crash the plugin by repeatedly sending invalid request bodies...

5.9CVSS7.2AI score0.00275EPSS
Exploits0References11
RedhatCVE
RedhatCVE
added 2025/05/23 4:13 a.m.9 views

CVE-2023-40349

Jenkins Gogs Plugin 1.0.15 and earlier improperly initializes an option to secure its webhook endpoint, allowing unauthenticated attackers to trigger builds of jobs...

5.3CVSS6.8AI score0.00577EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:37 p.m.4 views

CVE-2022-41234

Jenkins Rundeck Plugin 3.6.11 and earlier does not protect access to the /plugin/rundeck/webhook/ endpoint, allowing users with Overall/Read permission to trigger jobs that are configured to be triggerable via Rundeck...

8.8CVSS8.2AI score0.00827EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2024/07/24 12:0 a.m.6 views

The vulnerability of the declarative delivery tool for GitOps in Kubernetes Argo CD allows a attacker to trigger a service failure.

The vulnerability of GitOps’ continuous delivery tool for Kubernetes Argo CD is related to an uncontrolled resource consumption. Exploiting this vulnerability could allow a malicious actor to trigger a service failure by sending a specially crafted JSON payload to the final endpoint /api/webhook...

7.8CVSS7.2AI score0.01392EPSS
Exploits1References5Affected Software1
Positive Technologies
Positive Technologies
added 2024/07/22 12:0 a.m.5 views

PT-2024-5127 · Argo Cd · Argo Cd

Name of the Vulnerable Software and Affected Versions: Argo CD versions prior to 2.11.6 Argo CD versions prior to 2.10.15 Argo CD versions prior to 2.9.20 Description: The issue is related to an unauthenticated attacker sending a specially crafted large JSON payload to the "/api/webhook" endpoint...

8.7CVSS9.5AI score0.01392EPSS
Exploits1References13
Rows per page
Query Builder