10 matches found
EUVD-2025-25431
Malicious code in bioql PyPI...
CVE-2025-47700
Mattermost Server versions 10.5.x = 10.5.9 utilizing the Agents plugin fail to reject empty request bodies which allows users to trick users into clicking malicious links via post actions...
Server-side Request Forgery (SSRF)
Overview Affected versions of this package are vulnerable to Server-side Request Forgery SSRF due to empty request bodies not being properly rejected. An attacker can cause users to perform unintended actions by tricking them into clicking malicious links through post actions. Remediation Upgrade...
Server-side Request Forgery (SSRF)
Overview Affected versions of this package are vulnerable to Server-side Request Forgery SSRF due to empty request bodies not being properly rejected. An attacker can cause users to perform unintended actions by tricking them into clicking malicious links through post actions. Remediation Upgrade...
GHSA-VQWH-5JHH-VC9P Mattermost Server SSRF Vulnerability via the Agents Plugin
Mattermost Server versions 10.5.x = 10.5.9 utilizing the Agents plugin fail to reject empty request bodies which allows users to trick users into clicking malicious links via post actions...
Mattermost Server SSRF Vulnerability via the Agents Plugin
Mattermost Server versions 10.5.x = 10.5.9 utilizing the Agents plugin fail to reject empty request bodies which allows users to trick users into clicking malicious links via post actions...
CVE-2025-47700
Mattermost Server versions 10.5.x
CVE-2025-47700 AI plugin APIs can be triggered using post actions
Mattermost Server versions 10.5.x = 10.5.9 utilizing the Agents plugin fail to reject empty request bodies which allows users to trick users into clicking malicious links via post actions...
Mattermost Server 安全漏洞
Mattermost Server is a suite of open source messaging platforms from US-based Mattermost. A security vulnerability exists in Mattermost Server version 10.5.9 and prior versions, which stems from the Agents plugin not rejecting empty request bodies, which could cause users to click on malicious...
Mattermost 资源管理错误漏洞
Mattermost is an open source collaboration platform from Mattermost, Inc. in the United States. Mattermost suffers from a denial-of-service vulnerability that stems from an inability to handle empty request bodies in an add endpoint, which could be exploited by an attacker to send a request with ...