Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2025/10/17 9:42 a.m.11 views

CVE-2025-54461

ChatLuck contains an insufficient granularity of access control vulnerability in Invitation of Guest Users. If exploited, an uninvited guest user may register itself as a guest user...

6.9CVSS6.9AI score0.00296EPSS
Exploits0References1
NVD
NVD
added 2025/10/16 9:15 a.m.1 views

CVE-2025-54461

ChatLuck contains an insufficient granularity of access control vulnerability in Invitation of Guest Users. If exploited, an uninvited guest user may register itself as a guest user...

6.9CVSS0.00296EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/10/16 8:55 a.m.6 views

CVE-2025-54461

ChatLuck contains an insufficient granularity of access control vulnerability in Invitation of Guest Users. If exploited, an uninvited guest user may register itself as a guest user...

6.9CVSS0.00296EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/23 9:40 a.m.7 views

CVE-2024-1888

Mattermost fails to check the "inviteguest" permission when inviting guests of other teams to a team, allowing a member with permissions to add other members but not to add guests to add a guest to a team as long as the guest was already a guest in another team of the server...

4.3CVSS4.5AI score0.00331EPSS
Exploits0References1
OSV
OSV
added 2024/02/29 9:15 a.m.6 views

CVE-2024-1888

Mattermost fails to check the "inviteguest" permission when inviting guests of other teams to a team, allowing a member with permissions to add other members but not to add guests to add a guest to a team as long as the guest was already a guest in another team of the server...

4.3CVSS6.5AI score
Exploits0References1
Cvelist
Cvelist
added 2022/03/18 6:0 p.m.23 views

CVE-2022-1002 HTML Injection while inviting Guests

Mattermost 6.3.0 and earlier fails to properly sanitize the HTML content in the email invitation sent to guest users, which allows registered users with special permissions to invite guest users to inject unescaped HTML content in the email invitations...

2CVSS5.6AI score0.00639EPSS
Exploits1References2
Rows per page
Query Builder