CVE-2021-37859

Fixed a bypass for a reflected cross-site scripting vulnerability affecting OAuth-enabled instances of Mattermost...

Mattermost Server Cross-Site Scripting Vulnerability (CNVD-2022-65358)

Mattermost Server is an open source messaging platform from Mattermost, Inc. A cross-site scripting vulnerability exists in Mattermost Server, which stems from the lack of proper authentication of client-side data in OAuth-enabled Mattermost instances, and could be exploited to lure users into...

CVE-2021-37859 Reflected XSS in OAuth Flow

Fixed a bypass for a reflected cross-site scripting vulnerability affecting OAuth-enabled instances of Mattermost...