2 matches found
CVE-2019-14367
Slack-Chat through 1.5.5 leaks a Slack Access Token in source code. An attacker can obtain a lot of information about the victim's Slack channels, members, etc...
CVE-2019-14367
Slack-Chat (a jQuery-based web chat app) up to version 1.5.5 leaks a Slack Access Token in its source code. This information disclosure can allow an attacker to access Slack data such as channels and members. The connected documents do not specify a remediation or published exploitation details.