5 matches found
CVE-2023-2783
Mattermost Apps Framework fails to verify that a secret provided in the incoming webhook request allowing an attacker to modify the contents of the post sent by the Apps...
Mattermost Server < 7.8.5 / 7.9.x < 7.9.4 / 7.10.x < 7.10.1 Missing Authorization (MMSA-2023-00151)
The version of Mattermost Server running on the remote host is prior to 7.8.5, 7.9.x prior to 7.9.4 or 7.10.x prior to 7.10.1. It is, therefore, affected by a missing authorization vulnerability. Mattermost Apps Framework fails to verify that a secret provided in the incoming webhook request...
CVE-2023-2783
Mattermost Apps Framework fails to verify that a secret provided in the incoming webhook request allowing an attacker to modify the contents of the post sent by the Apps...
CVE-2023-2783 App Framework does not checks for the secret provided in the incoming webhook request
Mattermost Apps Framework fails to verify that a secret provided in the incoming webhook request allowing an attacker to modify the contents of the post sent by the Apps...
CVE-2023-2783
The CVE-2023-2783 issue affects Mattermost Apps Framework and involves failure to verify a secret in the incoming webhook request, allowing an attacker to modify the content of posts produced by Apps. It is a network-vector vulnerability with low privileges required and no user interaction, impac...