2 matches found
CVE-2017-18902
An issue was discovered in Mattermost Server before 4.1.0, 4.0.4, and 3.10.3. It allows attackers to discover team invite IDs via team API endpoints...
CVE-2017-18902
Mattermost Server contains a vulnerability affecting versions before 4.1.0, 4.0.4, and 3.10.3 where team invite IDs can be disclosed via team API endpoints. The exact root cause is not detailed in the provided documents, but the issue enables an information disclosure via the API. Impact is limit...