Lucene search
K

6 matches found

SUSE CVE
SUSE CVE
added 2026/01/17 12:51 a.m.8 views

SUSE CVE-2017-18901

An issue was discovered in Mattermost Server before 4.1.0, 4.0.4, and 3.10.3. It allows attackers to discover a team invite ID by requesting a JSON document...

5.3CVSS7AI score0.0092EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/01/09 10:35 a.m.9 views

CVE-2017-18901

An issue was discovered in Mattermost Server before 4.1.0, 4.0.4, and 3.10.3. It allows attackers to discover a team invite ID by requesting a JSON document...

5.3CVSS6.8AI score0.0092EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2017-9992

Malware in sbrugna...

5.3CVSS5.6AI score0.0092EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/08/23 8:9 a.m.8 views

CVE-2025-47870

Mattermost versions 10.8.x = 10.8.3, 10.5.x = 10.5.8, 9.11.x = 9.11.17, 10.9.x = 10.9.2 fail to sanitize the team invite ID in the POST /api/v4/teams/:teamId/restore endpoint which allows an team admin with no member invite privileges to get the team’s invite id...

4.3CVSS7.2AI score0.00201EPSS
Exploits0References1
Github Security Blog
Github Security Blog
added 2025/08/21 9:30 a.m.12 views

Mattermost Does Not Sanitize the Team Invite ID

Mattermost versions 10.8.x = 10.8.3, 10.5.x = 10.5.8, 9.11.x = 9.11.17, 10.9.x = 10.9.2 fail to sanitize the team invite ID in the POST /api/v4/teams/:teamId/restore endpoint which allows an team admin with no member invite privileges to get the team’s invite id...

4.3CVSS7AI score0.00201EPSS
Exploits0References4Affected Software4
Prion
Prion
added 2020/06/19 7:15 p.m.14 views

Design/Logic Flaw

An issue was discovered in Mattermost Server before 4.1.0, 4.0.4, and 3.10.3. It allows attackers to discover a team invite ID by requesting a JSON document...

5CVSS5.2AI score0.0092EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder