Lucene search
K

4 matches found

Snyk
Snyk
added 2026/05/18 11:47 a.m.8 views

Incorrect Authorization

Overview Affected versions of this package are vulnerable to Incorrect Authorization via the command update API. An attacker can impersonate existing system or custom commands by editing their own slash command trigger to match an already-registered trigger, potentially hijacking command...

5.3CVSS5.8AI score0.00152EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/05/18 12:0 a.m.13 views

PT-2026-41649

Name of the Vulnerable Software and Affected Versions Mattermost versions prior to 11.5.2 Mattermost versions prior to 10.11.14 Mattermost versions prior to 11.4.4 Description An issue exists where the system fails to enforce trigger-word uniqueness during the update of slash commands. This allow...

4.3CVSS5.8AI score0.00152EPSS
Exploits0References11
CNNVD
CNNVD
added 2026/05/18 12:0 a.m.13 views

Mattermost 安全漏洞

Mattermost is an open-source collaboration platform developed by the American company Mattermost. Versions of Mattermost such as 11.5.1 and earlier 11.5.x series, 10.11.13 and earlier 10.11.x series, and 11.4.3 and earlier 11.4.x series have security vulnerabilities. These vulnerabilities stem fr...

4.3CVSS5.8AI score0.00152EPSS
Exploits0References1
securityvulns
securityvulns
added 2004/09/13 12:0 a.m.27 views

Serv-U up to 5.2 Denial of Service

Serv-U FTP server is a secure, advanced FTP server for Windows. However, like most programs, it is not completely bugfree. I and maybe more people with me found this bug some time ago. It can be triggered as every user that can log in, anonymous included, and exists in possibly every version. At...

7.3AI score
Exploits0
Rows per page
Query Builder