Mattermost: >> Mattermost Server >> 7.7.1 Security Vulnerabilities
Boards in Mattermost allows an attacker to upload a malicious SVG image file as an attachment to a card and share it using a direct link to the file.
CVSS Score
7.3
EPSS Score
0.004
Published
2023-03-31
Mattermost allows an attacker to request a preview of an existing message when creating a new message via the createPost API call, disclosing the contents of the linked message.
CVSS Score
6.5
EPSS Score
0.005
Published
2023-03-31
Page 5