Lucene search
+L

4 matches found

Vulnrichment
Vulnrichment
added 2024/05/26 1:32 p.m.25 views

CVE-2024-36255 Post actions can run playbook checklist task commands

Mattermost versions 9.5.x = 9.5.3, 9.6.x = 9.6.1 and 8.1.x = 8.1.12 fail to perform proper input validation on post actions which allows an attacker to run a playbook checklist task command as another user via creating and sharing a deceptive post action that unexpectedly runs a slash command in...

5.7CVSS7.1AI score0.00183EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/05/26 1:32 p.m.26 views

CVE-2024-36255 Post actions can run playbook checklist task commands

Mattermost versions 9.5.x = 9.5.3, 9.6.x = 9.6.1 and 8.1.x = 8.1.12 fail to perform proper input validation on post actions which allows an attacker to run a playbook checklist task command as another user via creating and sharing a deceptive post action that unexpectedly runs a slash command in...

5.7CVSS5.7AI score0.00183EPSS
Exploits0References1
OSV
OSV
added 2024/05/26 1:32 p.m.4 views

CVE-2024-36255 Post actions can run playbook checklist task commands

Mattermost versions 9.5.x = 9.5.3, 9.6.x = 9.6.1 and 8.1.x = 8.1.12 fail to perform proper input validation on post actions which allows an attacker to run a playbook checklist task command as another user via creating and sharing a deceptive post action that unexpectedly runs a slash command in...

5.7CVSS6.4AI score0.00183EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/05/26 12:0 a.m.9 views

PT-2024-26935 · Mattermost · Mattermost

Name of the Vulnerable Software and Affected Versions: Mattermost versions 8.1.x through 8.1.12 Mattermost versions 9.5.x through 9.5.3 Mattermost versions 9.6.x through 9.6.1 Description: The issue arises from inadequate input validation on post actions, allowing an attacker to execute a playboo...

5.7CVSS7.7AI score0.00183EPSS
Exploits0References2
Rows per page
Query Builder