Security
Headlines
HeadlinesLatestCVEs

Headline

GHSA-h3gq-j7p9-x3p4: Mattermost Cross-site Scripting vulnerability

Mattermost version 8.1.6 and earlier fails to sanitize channel mention data in posts, which allows an attacker to inject markup in the web client.

ghsa
Open in Source
#xss#vulnerability#web#git

Mattermost Cross-site Scripting vulnerability

Low severity GitHub Reviewed Published Dec 29, 2023 to the GitHub Advisory Database • Updated Jan 3, 2024

ghsa: Latest News

GHSA-qg5g-gv98-5ffh: rustls network-reachable panic in `Acceptor::accept`
ghsa