Mattermost: >> Mattermost >> 7.8.11 Security Vulnerabilities
Mattermost fails to properly sanitize the user object when updating the username, resulting in the password hash being included in the response body.
CVSS Score
4.9
EPSS Score
0.001
Published
2023-11-06
Mattermost fails to properly sanitize the request to /api/v4/redirect_location allowing an attacker, sending a specially crafted request to /api/v4/redirect_location, to fill up the memory due to caching large items.
CVSS Score
5.3
EPSS Score
0.001
Published
2023-11-06
Page 2