2 matches found
CVE-2017-18882
An issue was discovered in Mattermost Server before 4.3.0, 4.2.1, and 4.1.2. XSS can occur via OpenGraph data...
CVE-2017-18882
Mattermost Server contains a cross-site scripting (XSS) vulnerability (CVE-2017-18882) affecting versions prior to 4.3.0, 4.2.1, and 4.1.2. Descriptions across sources attribute the issue to improper handling/validation of OpenGraph data supplied by the user, enabling an attacker to inject and ex...