Lucene search
K

5 matches found

OSV
OSV
added 2025/08/11 9:31 p.m.7 views

GHSA-VPCR-FQPC-386H Mattermost Confluence Plugin has Missing Authorization vulnerability

Mattermost Confluence Plugin versions 1.5.0 fail to check user access to the channel, which allows attackers to get channel subscription details without proper access to the channel via an API call to the Get Channel Subscriptions details endpoint...

4CVSS6.9AI score0.00192EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/08/11 6:56 p.m.3 views

CVE-2025-44001 Unauthorized Channel Subscription Read in Mattermost Confluence Plugin

Mattermost Confluence Plugin version 1.5.0 fails to check the access of the user to the channel which allows attackers to get channel subscription details without proper access to the channel via API call to the Get Channel Subscriptions details endpoint...

4CVSS7.1AI score0.00192EPSS
Exploits0References1
CVE
CVE
added 2025/08/11 6:56 p.m.132 views

CVE-2025-44001

CVE-2025-44001 concerns the Mattermost Confluence Plugin where versions

4CVSS7.1AI score0.00192EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2025/07/10 12:0 a.m.6 views

PT-2025-32584 · Mattermost · Mattermost Confluence Plugin

Name of the Vulnerable Software and Affected Versions: Mattermost Confluence Plugin versions prior to 1.5.0 Description: The Mattermost Confluence Plugin does not verify user access to a channel, allowing attackers to create channel subscriptions without proper authorization via an API call to th...

4CVSS7.1AI score0.00184EPSS
Exploits0References10
Positive Technologies
Positive Technologies
added 2025/07/10 12:0 a.m.4 views

PT-2025-32579 · Mattermost · Mattermost Confluence Plugin

Name of the Vulnerable Software and Affected Versions: Mattermost Confluence Plugin versions prior to 1.5.0 Description: The Mattermost Confluence Plugin does not verify user access to a channel, enabling attackers to create channel subscriptions without authorization through an API call to the...

4CVSS7.1AI score0.00183EPSS
Exploits0References10
Rows per page
Query Builder