Lucene search
K

7 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-34441

Malicious code in bioql PyPI...

4.3CVSS4.9AI score0.00244EPSS
Exploits0References1
CNVD
CNVD
added 2025/06/06 12:0 a.m.3 views

Mattermost Access Control Error Vulnerability

Mattermost is an open source collaboration platform from Mattermost, Inc. in the United States. Mattermost suffers from an Access Control Error vulnerability that stems from improper access control restrictions and can be exploited by an attacker to cause information disclosure...

4.3CVSS6.7AI score0.00191EPSS
Exploits0References1
OSV
OSV
added 2025/06/03 5:58 p.m.2 views

GO-2025-3728 Mattermost fails to properly enforce access control restrictions for System Manager roles in github.com/mattermost/mattermost-server

Mattermost fails to properly enforce access control restrictions for System Manager roles in github.com/mattermost/mattermost-server...

4.3CVSS7.1AI score0.00191EPSS
Exploits0References4
OSV
OSV
added 2025/05/30 3:30 p.m.2 views

GHSA-86JG-35XJ-3VV5 Mattermost fails to properly enforce access control restrictions for System Manager roles

Mattermost versions 10.7.x = 10.7.0, 10.5.x = 10.5.3, 9.11.x = 9.11.12 fails to properly enforce access control restrictions for System Manager roles, allowing authenticated users with System Manager privileges to view team details they should not have access to via direct API requests to team...

3.1CVSS6.8AI score0.00191EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/05/15 3:27 p.m.18 views

CVE-2025-2527 Improper access control to group information

Mattermost versions 10.5.x = 10.5.2, 9.11.x = 9.11.11 failed to properly verify a user's permissions when accessing groups, which allows an attacker to view group information via an API request...

4.3CVSS0.00257EPSS
Exploits0References1
CNVD
CNVD
added 2024/11/13 12:0 a.m.9 views

Mattermost Access Control Error Vulnerability (CNVD-2024-45313)

Mattermost is an open source collaboration platform from Mattermost, Inc. in the United States. Mattermost suffers from an Access Control Error vulnerability that stems from a failure to properly query ElasticSearch when searching for a channel name in the channel switcher, which can be exploited...

4.3CVSS6.6AI score0.00288EPSS
Exploits0References1
CNVD
CNVD
added 2023/06/21 12:0 a.m.9 views

Mattermost Access Control Error Vulnerability (CNVD-2023-55043)

Mattermost is an open source collaboration platform from Mattermost, Inc. in the United States. Mattermost suffers from an Access Control Error vulnerability that stems from not checking the identity of a channel member when accessing a message thread, which can be exploited by an attacker to...

6.5CVSS6.7AI score0.0054EPSS
Exploits0References1
Rows per page
Query Builder