Headline
GHSA-h3gq-j7p9-x3p4: Mattermost Cross-site Scripting vulnerability
Mattermost version 8.1.6 and earlier fails to sanitize channel mention data in posts, which allows an attacker to inject markup in the web client.
Mattermost Cross-site Scripting vulnerability
Low severity GitHub Reviewed Published Dec 29, 2023 to the GitHub Advisory Database • Updated Jan 3, 2024