CVE-2016-11063

Mattermost Server prior to 3.5.1 is affected by a Cross‑Site Scripting (XSS) vulnerability via the file preview feature. This is confirmed across multiple sources (SUSE SUSECVEs, Red Hat, OpenSUSE advisories and OSV/NVD entries). The root cause is described as an XSS condition in the file preview...