8 matches found
EUVD-2025-2148
Malicious code in bioql PyPI...
CVE-2025-20072
Mattermost Mobile versions = 2.22.0 fail to properly validate the style of proto supplied to an action's style in post.props.attachments, which allows an attacker to crash the mobile via crafted malicious input...
CVE-2025-20072 Mobile crash via improper validation of proto style in attachments
Mattermost Mobile versions = 2.22.0 fail to properly validate the style of proto supplied to an action's style in post.props.attachments, which allows an attacker to crash the mobile via crafted malicious input...
CVE-2025-20072 Mobile crash via improper validation of proto style in attachments
Mattermost Mobile versions = 2.22.0 fail to properly validate the style of proto supplied to an action's style in post.props.attachments, which allows an attacker to crash the mobile via crafted malicious input...
CVE-2025-21088 WebApp crash via improper validation of proto style in attachments
Mattermost versions 10.2.x = 10.2.0, 9.11.x = 9.11.5, 10.0.x = 10.0.3, 10.1.x = 10.1.3 fail to properly validate the style of proto supplied to an action's style in post.props.attachments, which allows an attacker to crash the frontend via crafted malicious input...
CVE-2025-21088
CVE-2025-21088 – Mattermost frontend crash via invalid proto style validation . The issue affects Mattermost Server versions 9.11.x (≤9.11.5), 10.0.x (≤10.0.3), 10.1.x (≤10.1.3), and 10.2.x (≤10.2.0) where the style of proto supplied to an action’s style in post.props.attachments is not properly ...
CVE-2025-21088 WebApp crash via improper validation of proto style in attachments
Mattermost versions 10.2.x = 10.2.0, 9.11.x = 9.11.5, 10.0.x = 10.0.3, 10.1.x = 10.1.3 fail to properly validate the style of proto supplied to an action's style in post.props.attachments, which allows an attacker to crash the frontend via crafted malicious input...
Mattermost 代码问题漏洞
Mattermost is an open source collaboration platform from Mattermost, Inc. in the United States. Mattermost suffers from a code issue vulnerability that stems from a failure to properly validate a proto style provided to an action style, which can be exploited by an attacker to crash the front-end...