Lucene search
K

5 matches found

Snyk
Snyk
added 2026/05/18 11:47 a.m.7 views

Insertion of Sensitive Information into Log File

Overview github.com/mattermost/mattermost-plugin-calls/server is a package that enables voice calling and screen sharing functionality in Mattermost channels Affected versions of this package are vulnerable to Insertion of Sensitive Information into Log File via the plugin configuration process. ...

7.6CVSS5.8AI score0.00256EPSS
Exploits0References2
OSV
OSV
added 2025/12/30 1:49 a.m.4 views

GO-2025-4254 Mattermost has CSRF vulnerability via Calls Widget page in github.com/mattermost/mattermost-plugin-calls

Mattermost has CSRF vulnerability via Calls Widget page in github.com/mattermost/mattermost-plugin-calls...

4.3CVSS6.6AI score0.001EPSS
Exploits0References5
Snyk
Snyk
added 2025/12/17 6:44 p.m.1 views

Improper Validation of Specified Type of Input

Overview github.com/mattermost/mattermost-plugin-calls is a package for voice calling and screen sharing functionality in Mattermost channels. Affected versions of this package are vulnerable to Improper Validation of Specified Type of Input via the WebSocket request handling. An attacker can cau...

7.1CVSS6.8AI score0.0024EPSS
Exploits0References2
Snyk
Snyk
added 2025/12/17 12:44 p.m.1 views

Cross-site Request Forgery (CSRF)

Overview github.com/mattermost/mattermost-plugin-calls/server is a package that enables voice calling and screen sharing functionality in Mattermost channels Affected versions of this package are vulnerable to Cross-site Request Forgery CSRF via the Calls widget page. An attacker can initiate cal...

5.3CVSS6.7AI score0.001EPSS
Exploits0References2
Snyk
Snyk
added 2022/06/23 9:26 a.m.3 views

Malicious Package

Overview mattermost-plugin-calls is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this...

9.8CVSS7AI score
Exploits0References3
Rows per page
Query Builder