CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-35075

Mattermost fails to use innerText / textContent when setting the channel name in the webapp during autocomplete, allowing an attacker to inject HTML to a victim's page by create a channel name that is valid HTML. No XSS is possible though.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 59.2%

CVSS Severity

CVSS v3 Score 3.1

References

Products affected by CVE-2023-35075

Mattermost » Mattermost » Version: N/A

cpe:2.3:a:mattermost:mattermost:-
Mattermost » Mattermost » Version: 1.21.0

cpe:2.3:a:mattermost:mattermost:1.21.0
Mattermost » Mattermost » Version: 1.21.1

cpe:2.3:a:mattermost:mattermost:1.21.1
Mattermost » Mattermost » Version: 1.21.2

cpe:2.3:a:mattermost:mattermost:1.21.2
Mattermost » Mattermost » Version: 1.22.0

cpe:2.3:a:mattermost:mattermost:1.22.0
Mattermost » Mattermost » Version: 1.22.1

cpe:2.3:a:mattermost:mattermost:1.22.1
Mattermost » Mattermost » Version: 1.23.0

cpe:2.3:a:mattermost:mattermost:1.23.0
Mattermost » Mattermost » Version: 1.23.1

cpe:2.3:a:mattermost:mattermost:1.23.1
Mattermost » Mattermost » Version: 1.24.0

cpe:2.3:a:mattermost:mattermost:1.24.0
Mattermost » Mattermost » Version: 1.25.0

cpe:2.3:a:mattermost:mattermost:1.25.0
Mattermost » Mattermost » Version: 1.25.1

cpe:2.3:a:mattermost:mattermost:1.25.1
Mattermost » Mattermost » Version: 1.26.0

cpe:2.3:a:mattermost:mattermost:1.26.0
Mattermost » Mattermost » Version: 1.26.1

cpe:2.3:a:mattermost:mattermost:1.26.1
Mattermost » Mattermost » Version: 1.26.2

cpe:2.3:a:mattermost:mattermost:1.26.2
Mattermost » Mattermost » Version: 1.27.0

cpe:2.3:a:mattermost:mattermost:1.27.0
Mattermost » Mattermost » Version: 1.27.1

cpe:2.3:a:mattermost:mattermost:1.27.1
Mattermost » Mattermost » Version: 1.28.0

cpe:2.3:a:mattermost:mattermost:1.28.0
Mattermost » Mattermost » Version: 1.29.0

cpe:2.3:a:mattermost:mattermost:1.29.0
Mattermost » Mattermost » Version: 1.30.0

cpe:2.3:a:mattermost:mattermost:1.30.0
Mattermost » Mattermost » Version: 1.30.1

cpe:2.3:a:mattermost:mattermost:1.30.1
Mattermost » Mattermost » Version: 1.31.0

cpe:2.3:a:mattermost:mattermost:1.31.0
Mattermost » Mattermost » Version: 1.31.1

cpe:2.3:a:mattermost:mattermost:1.31.1
Mattermost » Mattermost » Version: 1.31.2

cpe:2.3:a:mattermost:mattermost:1.31.2
Mattermost » Mattermost » Version: 1.32.0

cpe:2.3:a:mattermost:mattermost:1.32.0
Mattermost » Mattermost » Version: 1.32.1

cpe:2.3:a:mattermost:mattermost:1.32.1
Mattermost » Mattermost » Version: 1.32.2

cpe:2.3:a:mattermost:mattermost:1.32.2
Mattermost » Mattermost » Version: 1.33.0

cpe:2.3:a:mattermost:mattermost:1.33.0
Mattermost » Mattermost » Version: 1.33.1

cpe:2.3:a:mattermost:mattermost:1.33.1
Mattermost » Mattermost » Version: 1.34.0

cpe:2.3:a:mattermost:mattermost:1.34.0
Mattermost » Mattermost » Version: 1.34.1

cpe:2.3:a:mattermost:mattermost:1.34.1
Mattermost » Mattermost » Version: 1.35.0

cpe:2.3:a:mattermost:mattermost:1.35.0
Mattermost » Mattermost » Version: 1.35.1

cpe:2.3:a:mattermost:mattermost:1.35.1
Mattermost » Mattermost » Version: 1.36.0

cpe:2.3:a:mattermost:mattermost:1.36.0
Mattermost » Mattermost » Version: 1.37.0

cpe:2.3:a:mattermost:mattermost:1.37.0
Mattermost » Mattermost » Version: 1.38.0

cpe:2.3:a:mattermost:mattermost:1.38.0
Mattermost » Mattermost » Version: 1.38.1

cpe:2.3:a:mattermost:mattermost:1.38.1
Mattermost » Mattermost » Version: 1.39.0

cpe:2.3:a:mattermost:mattermost:1.39.0
Mattermost » Mattermost » Version: 1.40.0

cpe:2.3:a:mattermost:mattermost:1.40.0
Mattermost » Mattermost » Version: 1.41.0

cpe:2.3:a:mattermost:mattermost:1.41.0
Mattermost » Mattermost » Version: 1.41.1

cpe:2.3:a:mattermost:mattermost:1.41.1
Mattermost » Mattermost » Version: 5.34.0

cpe:2.3:a:mattermost:mattermost:5.34.0
Mattermost » Mattermost » Version: 5.34.1

cpe:2.3:a:mattermost:mattermost:5.34.1
Mattermost » Mattermost » Version: 5.34.2

cpe:2.3:a:mattermost:mattermost:5.34.2
Mattermost » Mattermost » Version: 5.34.3

cpe:2.3:a:mattermost:mattermost:5.34.3
Mattermost » Mattermost » Version: 5.34.4

cpe:2.3:a:mattermost:mattermost:5.34.4
Mattermost » Mattermost » Version: 5.34.5

cpe:2.3:a:mattermost:mattermost:5.34.5
Mattermost » Mattermost » Version: 5.35.0

cpe:2.3:a:mattermost:mattermost:5.35.0
Mattermost » Mattermost » Version: 5.35.1

cpe:2.3:a:mattermost:mattermost:5.35.1
Mattermost » Mattermost » Version: 5.35.2

cpe:2.3:a:mattermost:mattermost:5.35.2
Mattermost » Mattermost » Version: 5.35.3

cpe:2.3:a:mattermost:mattermost:5.35.3
Mattermost » Mattermost » Version: 5.35.4

cpe:2.3:a:mattermost:mattermost:5.35.4
Mattermost » Mattermost » Version: 5.36.0

cpe:2.3:a:mattermost:mattermost:5.36.0
Mattermost » Mattermost » Version: 5.36.1

cpe:2.3:a:mattermost:mattermost:5.36.1
Mattermost » Mattermost » Version: 5.36.2

cpe:2.3:a:mattermost:mattermost:5.36.2
Mattermost » Mattermost » Version: 5.37.0

cpe:2.3:a:mattermost:mattermost:5.37.0
Mattermost » Mattermost » Version: 5.37.1

cpe:2.3:a:mattermost:mattermost:5.37.1
Mattermost » Mattermost » Version: 5.37.10

cpe:2.3:a:mattermost:mattermost:5.37.10
Mattermost » Mattermost » Version: 5.37.2

cpe:2.3:a:mattermost:mattermost:5.37.2
Mattermost » Mattermost » Version: 5.37.3

cpe:2.3:a:mattermost:mattermost:5.37.3
Mattermost » Mattermost » Version: 5.37.4

cpe:2.3:a:mattermost:mattermost:5.37.4
Mattermost » Mattermost » Version: 5.37.5

cpe:2.3:a:mattermost:mattermost:5.37.5
Mattermost » Mattermost » Version: 5.37.6

cpe:2.3:a:mattermost:mattermost:5.37.6
Mattermost » Mattermost » Version: 5.37.7

cpe:2.3:a:mattermost:mattermost:5.37.7
Mattermost » Mattermost » Version: 5.37.8

cpe:2.3:a:mattermost:mattermost:5.37.8
Mattermost » Mattermost » Version: 5.37.9

cpe:2.3:a:mattermost:mattermost:5.37.9
Mattermost » Mattermost » Version: 5.38.0

cpe:2.3:a:mattermost:mattermost:5.38.0
Mattermost » Mattermost » Version: 5.38.1

cpe:2.3:a:mattermost:mattermost:5.38.1
Mattermost » Mattermost » Version: 5.38.2

cpe:2.3:a:mattermost:mattermost:5.38.2
Mattermost » Mattermost » Version: 5.38.3

cpe:2.3:a:mattermost:mattermost:5.38.3
Mattermost » Mattermost » Version: 5.38.4

cpe:2.3:a:mattermost:mattermost:5.38.4
Mattermost » Mattermost » Version: 5.39.0

cpe:2.3:a:mattermost:mattermost:5.39.0
Mattermost » Mattermost » Version: 5.39.1

cpe:2.3:a:mattermost:mattermost:5.39.1
Mattermost » Mattermost » Version: 5.39.2

cpe:2.3:a:mattermost:mattermost:5.39.2
Mattermost » Mattermost » Version: 5.39.3

cpe:2.3:a:mattermost:mattermost:5.39.3
Mattermost » Mattermost » Version: 6.0.0

cpe:2.3:a:mattermost:mattermost:6.0.0
Mattermost » Mattermost » Version: 6.0.1

cpe:2.3:a:mattermost:mattermost:6.0.1
Mattermost » Mattermost » Version: 6.0.2

cpe:2.3:a:mattermost:mattermost:6.0.2
Mattermost » Mattermost » Version: 6.0.3

cpe:2.3:a:mattermost:mattermost:6.0.3
Mattermost » Mattermost » Version: 6.0.4

cpe:2.3:a:mattermost:mattermost:6.0.4
Mattermost » Mattermost » Version: 6.1

cpe:2.3:a:mattermost:mattermost:6.1
Mattermost » Mattermost » Version: 6.1.0

cpe:2.3:a:mattermost:mattermost:6.1.0
Mattermost » Mattermost » Version: 6.1.1

cpe:2.3:a:mattermost:mattermost:6.1.1
Mattermost » Mattermost » Version: 6.1.2

cpe:2.3:a:mattermost:mattermost:6.1.2
Mattermost » Mattermost » Version: 6.1.3

cpe:2.3:a:mattermost:mattermost:6.1.3
Mattermost » Mattermost » Version: 6.2.0

cpe:2.3:a:mattermost:mattermost:6.2.0
Mattermost » Mattermost » Version: 6.2.1

cpe:2.3:a:mattermost:mattermost:6.2.1
Mattermost » Mattermost » Version: 6.2.2

cpe:2.3:a:mattermost:mattermost:6.2.2
Mattermost » Mattermost » Version: 6.2.3

cpe:2.3:a:mattermost:mattermost:6.2.3
Mattermost » Mattermost » Version: 6.2.4

cpe:2.3:a:mattermost:mattermost:6.2.4
Mattermost » Mattermost » Version: 6.2.5

cpe:2.3:a:mattermost:mattermost:6.2.5
Mattermost » Mattermost » Version: 6.3.0

cpe:2.3:a:mattermost:mattermost:6.3.0
Mattermost » Mattermost » Version: 6.3.1

cpe:2.3:a:mattermost:mattermost:6.3.1
Mattermost » Mattermost » Version: 6.3.10

cpe:2.3:a:mattermost:mattermost:6.3.10
Mattermost » Mattermost » Version: 6.3.2

cpe:2.3:a:mattermost:mattermost:6.3.2
Mattermost » Mattermost » Version: 6.3.3

cpe:2.3:a:mattermost:mattermost:6.3.3
Mattermost » Mattermost » Version: 6.3.4

cpe:2.3:a:mattermost:mattermost:6.3.4
Mattermost » Mattermost » Version: 6.3.5

cpe:2.3:a:mattermost:mattermost:6.3.5
Mattermost » Mattermost » Version: 6.3.6

cpe:2.3:a:mattermost:mattermost:6.3.6
Mattermost » Mattermost » Version: 6.3.7

cpe:2.3:a:mattermost:mattermost:6.3.7
Mattermost » Mattermost » Version: 6.3.8

cpe:2.3:a:mattermost:mattermost:6.3.8
Mattermost » Mattermost » Version: 6.3.9

cpe:2.3:a:mattermost:mattermost:6.3.9
Mattermost » Mattermost » Version: 6.4.0

cpe:2.3:a:mattermost:mattermost:6.4.0
Mattermost » Mattermost » Version: 6.4.1

cpe:2.3:a:mattermost:mattermost:6.4.1
Mattermost » Mattermost » Version: 6.4.2

cpe:2.3:a:mattermost:mattermost:6.4.2
Mattermost » Mattermost » Version: 6.4.3

cpe:2.3:a:mattermost:mattermost:6.4.3
Mattermost » Mattermost » Version: 6.5.0

cpe:2.3:a:mattermost:mattermost:6.5.0
Mattermost » Mattermost » Version: 6.5.1

cpe:2.3:a:mattermost:mattermost:6.5.1
Mattermost » Mattermost » Version: 6.5.2

cpe:2.3:a:mattermost:mattermost:6.5.2
Mattermost » Mattermost » Version: 6.6.0

cpe:2.3:a:mattermost:mattermost:6.6.0
Mattermost » Mattermost » Version: 6.6.1

cpe:2.3:a:mattermost:mattermost:6.6.1
Mattermost » Mattermost » Version: 6.6.2

cpe:2.3:a:mattermost:mattermost:6.6.2
Mattermost » Mattermost » Version: 6.7.0

cpe:2.3:a:mattermost:mattermost:6.7.0
Mattermost » Mattermost » Version: 6.7.1

cpe:2.3:a:mattermost:mattermost:6.7.1
Mattermost » Mattermost » Version: 6.7.2

cpe:2.3:a:mattermost:mattermost:6.7.2
Mattermost » Mattermost » Version: 7.0.0

cpe:2.3:a:mattermost:mattermost:7.0.0
Mattermost » Mattermost » Version: 7.0.1

cpe:2.3:a:mattermost:mattermost:7.0.1
Mattermost » Mattermost » Version: 7.0.2

cpe:2.3:a:mattermost:mattermost:7.0.2
Mattermost » Mattermost » Version: 7.1.0

cpe:2.3:a:mattermost:mattermost:7.1.0
Mattermost » Mattermost » Version: 7.1.1

cpe:2.3:a:mattermost:mattermost:7.1.1
Mattermost » Mattermost » Version: 7.1.2

cpe:2.3:a:mattermost:mattermost:7.1.2
Mattermost » Mattermost » Version: 7.1.3

cpe:2.3:a:mattermost:mattermost:7.1.3
Mattermost » Mattermost » Version: 7.1.4

cpe:2.3:a:mattermost:mattermost:7.1.4
Mattermost » Mattermost » Version: 7.1.5

cpe:2.3:a:mattermost:mattermost:7.1.5
Mattermost » Mattermost » Version: 7.1.6

cpe:2.3:a:mattermost:mattermost:7.1.6
Mattermost » Mattermost » Version: 7.1.7

cpe:2.3:a:mattermost:mattermost:7.1.7
Mattermost » Mattermost » Version: 7.1.8

cpe:2.3:a:mattermost:mattermost:7.1.8
Mattermost » Mattermost » Version: 7.1.9

cpe:2.3:a:mattermost:mattermost:7.1.9
Mattermost » Mattermost » Version: 7.2.0

cpe:2.3:a:mattermost:mattermost:7.2.0
Mattermost » Mattermost » Version: 7.2.1

cpe:2.3:a:mattermost:mattermost:7.2.1
Mattermost » Mattermost » Version: 7.3.0

cpe:2.3:a:mattermost:mattermost:7.3.0
Mattermost » Mattermost » Version: 7.3.1

cpe:2.3:a:mattermost:mattermost:7.3.1
Mattermost » Mattermost » Version: 7.4.0

cpe:2.3:a:mattermost:mattermost:7.4.0
Mattermost » Mattermost » Version: 7.4.1

cpe:2.3:a:mattermost:mattermost:7.4.1
Mattermost » Mattermost » Version: 7.5.0

cpe:2.3:a:mattermost:mattermost:7.5.0
Mattermost » Mattermost » Version: 7.5.1

cpe:2.3:a:mattermost:mattermost:7.5.1
Mattermost » Mattermost » Version: 7.5.2

cpe:2.3:a:mattermost:mattermost:7.5.2
Mattermost » Mattermost » Version: 7.7.0

cpe:2.3:a:mattermost:mattermost:7.7.0
Mattermost » Mattermost » Version: 7.7.1

cpe:2.3:a:mattermost:mattermost:7.7.1
Mattermost » Mattermost » Version: 7.7.2

cpe:2.3:a:mattermost:mattermost:7.7.2
Mattermost » Mattermost » Version: 7.7.3

cpe:2.3:a:mattermost:mattermost:7.7.3
Mattermost » Mattermost » Version: 7.7.4

cpe:2.3:a:mattermost:mattermost:7.7.4
Mattermost » Mattermost » Version: 7.8.0

cpe:2.3:a:mattermost:mattermost:7.8.0
Mattermost » Mattermost » Version: 7.8.1

cpe:2.3:a:mattermost:mattermost:7.8.1
Mattermost » Mattermost » Version: 7.8.11

cpe:2.3:a:mattermost:mattermost:7.8.11
Mattermost » Mattermost » Version: 7.8.12

cpe:2.3:a:mattermost:mattermost:7.8.12
Mattermost » Mattermost » Version: 7.8.2

cpe:2.3:a:mattermost:mattermost:7.8.2
Mattermost » Mattermost » Version: 7.8.3

cpe:2.3:a:mattermost:mattermost:7.8.3
Mattermost » Mattermost » Version: 7.8.4

cpe:2.3:a:mattermost:mattermost:7.8.4
Mattermost » Mattermost » Version: 7.8.5

cpe:2.3:a:mattermost:mattermost:7.8.5
Mattermost » Mattermost » Version: 7.8.6

cpe:2.3:a:mattermost:mattermost:7.8.6
Mattermost » Mattermost » Version: 7.8.7

cpe:2.3:a:mattermost:mattermost:7.8.7
Mattermost » Mattermost » Version: 7.8.8

cpe:2.3:a:mattermost:mattermost:7.8.8
Mattermost » Mattermost » Version: 7.8.9

cpe:2.3:a:mattermost:mattermost:7.8.9
Mattermost » Mattermost » Version: 8.0.0

cpe:2.3:a:mattermost:mattermost:8.0.0
Mattermost » Mattermost » Version: 8.0.1

cpe:2.3:a:mattermost:mattermost:8.0.1
Mattermost » Mattermost » Version: 8.1.0

cpe:2.3:a:mattermost:mattermost:8.1.0
Mattermost » Mattermost » Version: 8.1.3

cpe:2.3:a:mattermost:mattermost:8.1.3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-35075

Products

Pricing

Contact Us