3 matches found
Information Disclosure
matrix-appservice-irc is vulnerable to Information Disclosure. Using an event ID as a target, an attacker is able to leak a portion of a specified messaging event from another bridged room, resulting in disclosure of sensitive information...
matrix-appservice-irc Information Disclosure Vulnerability
matrix-appservice-irc is a bridge for Matrix. This bridge passes all IRC messages to Matrix and all Matrix messages to IRC. An information disclosure vulnerability exists in versions prior to matrix-appservice-irc 1.0.1, which stems from a vulnerability that allows an attacker to obtain informati...
CVE-2021-32659
Matrix-appservice-bridge is the bridging service for the Matrix communication program's application services. In versions 2.6.0 and earlier, if a bridge has room upgrade handling turned on in the configuration the roomUpgradeOpts key when instantiating a new Bridge instance., any m.room.tombstone...