12 matches found
CVE-2026-4053 post edit time limit is not enforced on some post update operations
Mattermost versions 11.5.x = 11.5.1, 10.11.x = 10.11.13 fail to enforce the PostEditTimeLimit on non-message post fields which allows an authenticated user to modify post file attachments, props, and pin status after the edit window has expired via the post patch and update API endpoints...
EUVD-2025-2220
Malicious code in bioql PyPI...
EUVD-2025-0091
Malicious code in bioql PyPI...
CVE-2025-21083
Mattermost Mobile Apps versions =2.22.0 fail to properly validate post props which allows a malicious authenticated user to cause a crash via a malicious post...
GO-2025-3394 Mattermost fails to properly validate post props in github.com/mattermost/mattermost-server
Mattermost fails to properly validate post props in github.com/mattermost/mattermost-server...
GO-2025-3392 Mattermost fails to properly validate post props in github.com/mattermost/mattermost-server
Mattermost fails to properly validate post props in github.com/mattermost/mattermost-server...
GHSA-45V9-W9FH-33J6 Mattermost fails to properly validate post props
Mattermost versions 10.2.x = 10.2.0, 9.11.x = 9.11.5, 10.0.x = 10.0.3, 10.1.x = 10.1.3 fail to properly validate post props which allows a malicious authenticated user to cause a crash via a malicious post...
Mattermost fails to properly validate post props
Mattermost versions 10.2.x = 10.2.0, 9.11.x = 9.11.5, 10.0.x = 10.0.3, 10.1.x = 10.1.3 fail to properly validate post props which allows a malicious authenticated user to cause a crash via a malicious post...
CVE-2025-20086 Insufficient Input Validation on Post Props
Mattermost versions 10.2.x = 10.2.0, 9.11.x = 9.11.5, 10.0.x = 10.0.3, 10.1.x = 10.1.3 fail to properly validate post props which allows a malicious authenticated user to cause a crash via a malicious post...
CVE-2025-21083 Insufficient Input Validation on Post Props
Mattermost Mobile Apps versions =2.22.0 fail to properly validate post props which allows a malicious authenticated user to cause a crash via a malicious post...
Mattermost Mobile Apps 安全漏洞
Mattermost Mobile Apps is a messaging mobile application from Mattermost USA. A denial of service vulnerability exists in Mattermost Mobile Apps that stems from a failure to properly validate post props, which can be exploited by an attacker to cause the application to crash...
PT-2025-4189 · Mattermost · Mattermost Mobile Apps
Name of the Vulnerable Software and Affected Versions: Mattermost Mobile Apps versions =2.22.0 Description: The issue arises from the failure to properly validate post properties, allowing a malicious authenticated user to cause a crash via a malicious post. This can be exploited by an...