CVE-2017-18885
Mattermost Server vulnerability CVE-2017-18885 affects Mattermost Server versions prior to 4.3.0, 4.2.1, and 4.1.2. An attacker can gain privileges by accessing unintended API endpoints on a user’s behalf. Root cause is exposure of endpoints that can be invoked with a user’s credentials to perfor...