3 matches found
CVE-2018-21251
An issue was discovered in Mattermost Server before 5.2 and 5.1.1. Authorization could be bypassed if the channel name were not the same in the params and the body...
CVE-2018-21251
CVE-2018-21251 affects Mattermost Server versions before 5.2 and 5.1.1. The issue allows an authorization bypass when the channel name differs between request parameters and the body. The provided documents do not specify a root cause beyond this mismatch, nor any CVE remediation (patch version o...
CVE-2018-21251
An issue was discovered in Mattermost Server before 5.2 and 5.1.1. Authorization could be bypassed if the channel name were not the same in the params and the body...