Data

Tools

Indexes

Applications

Experiments

Packages

An open API service providing package, version and dependency metadata of many open source software ecosystems and registries.

Top 2.2% on proxy.golang.org
Top 4.2% dependent packages on proxy.golang.org
Top 4.7% dependent repos on proxy.golang.org
Top 0.1% forks on proxy.golang.org
Top 2.2% docker downloads on proxy.golang.org

proxy.golang.org : github.com/mattermost/mattermost/server/v8

Mattermost is an open source platform for secure collaboration across the entire software development lifecycle..

Registry - Source - Documentation - JSON
purl: pkg:golang/github.com/mattermost/mattermost/server/v8
Keywords: collaboration , golang , hacktoberfest , mattermost , monorepo , react , react-native
License: GPL-1.0+
Latest release: over 1 year ago
First release: over 1 year ago
Namespace: github.com/mattermost/mattermost/server
Dependent packages: 2
Dependent repositories: 1
Stars: 26,228 on GitHub
Forks: 6,352 on GitHub
Docker dependents: 20
Docker downloads: 444,355,188
See more repository details: repos.ecosyste.ms
Last synced: 13 days ago

Low
GSA_kwCzR0hTQS05aDZqLTRmZngtY204NM4ABG1t
Mattermost doesn't restrict domains LLM can request to contact upstream
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8
Source: github
Published: about 1 month ago
Moderate
GSA_kwCzR0hTQS1oNHJyLWYzN2otNGhoN84ABG1q
Mattermost Incorrect Authorization vulnerability
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8
Source: github
Published: about 1 month ago
Moderate
GSA_kwCzR0hTQS13NnhoLWM4MnctaDk5N84ABDca
Mattermost webapp crash via a crafted post
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8
Source: github
Published: 4 months ago
Critical
GSA_kwCzR0hTQS1jbWM4LTIyMmMtdnFwOc4AA-US
Mattermost failed to properly validate that the channel that comes from the sync message is a shared channel
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8
Source: github
Published: 10 months ago
High
GSA_kwCzR0hTQS12ZzY3LWNobTctOG0zas4AA-UZ
Mattermost allows remote actor to create/update/delete posts in arbitrary channels
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8
Source: github
Published: 10 months ago
Moderate
GSA_kwCzR0hTQS05aHdwLWNqN20td2p3NM4AA2I2
Mattermost Incorrect Authorization vulnerability
Ecosystems: go
Packages: github.com/mattermost/mattermost-server/v6, github.com/mattermost/mattermost/server/v8
Source: github
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS1oNjl2LW12aDktaGZycc4AA2I8
Mattermost Incorrect Authorization vulnerability
Ecosystems: go
Packages: github.com/mattermost/mattermost-server/v6, github.com/mattermost/mattermost/server/v8
Source: github
Published: over 1 year ago
High
GSA_kwCzR0hTQS13cDQzLXZwcmgtYzN3Nc4AA6qC
Mattermost fails to authenticate the source of certain types of post actions
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8
Source: github
Published: about 1 year ago
Low
GSA_kwCzR0hTQS14cDlqLThwNjgtOXE5M84AA6p2
Mattermost Server Improper Access Control
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8
Source: github
Published: about 1 year ago
High
GSA_kwCzR0hTQS1meHE5LTY5NDYtMzRxN84AA-4r
Mattermost allows user with systems manager role with read-only access to teams to perform write operations on teams
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8
Source: github
Published: 9 months ago
Moderate
GSA_kwCzR0hTQS0zajk1LThnNDctZnB3aM4AA-4h
Mattermost allows team admin user without "Add Team Members" permission to disable invite URL
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8
Source: github
Published: 9 months ago
Low
GSA_kwCzR0hTQS1xcWM4LXJ2MzctNzlxNc4AA6BG
Mattermost Server Resource Exhaustion
Ecosystems: go
Packages: github.com/mattermost/mattermost-server/v6, github.com/mattermost/mattermost-server/v5, github.com/mattermost/mattermost-server, github.com/mattermost/mattermost/server/v8
Source: github
Published: about 1 year ago
Moderate
GSA_kwCzR0hTQS1ocmY5LXJtOTUtZnBmM84AA-4D
Mattermost Cross-Site Request Forgery vulnerability
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8
Source: github
Published: 9 months ago
Moderate
GSA_kwCzR0hTQS1wZnc2LTVyeDMteGgzY84AA5p-
Mattermost fails to check the "invite_guest" permission
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8
Source: github
Published: about 1 year ago
Moderate
GSA_kwCzR0hTQS1tajJwLXYyYzItdmg0ds4ABG5Q
Mattermost Incorrect Authorization vulnerability
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8
Source: github
Published: about 1 month ago
Moderate
GSA_kwCzR0hTQS0zNDg3LTNqN2MtN2d3as4AA3XX
Mattermost Uncontrolled Resource Consumption vulnerability
Ecosystems: go
Packages: github.com/mattermost/mattermost-server/v6, github.com/mattermost/mattermost/server/v8
Source: github
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS1ycDc0LXg0M20tY3B3M84ABFw-
Mattermost Fails to Restrict Bookmark Creation and Updates in Archived Channels
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8
Source: github
Published: 2 months ago
Moderate
GSA_kwCzR0hTQS04MjZoLXA0YzMtNDc3cM4ABCdm
Mattermost Race Condition vulnerability
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8
Source: github
Published: 5 months ago
Moderate
GSA_kwCzR0hTQS1qcjl4LTN4N20tNGo3Nc4AA-UT
Mattermost allows a remote actor to make an arbitrary local channel read-only
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8
Source: github
Published: 10 months ago
Moderate
GSA_kwCzR0hTQS1xOHAyLTJod2Mtanc2NM4ABEuF
Mattermost fails to restrict channel export of archived channels
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8
Source: github
Published: 3 months ago
Moderate
GSA_kwCzR0hTQS01MjYzLXBtMmgtbTdod84AA-4C
Mattermost doesn't restrict which roles can promote a user as system admin
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8
Source: github
Published: 9 months ago
Moderate
GSA_kwCzR0hTQS0yamh4LXczdmMtdzU5Z84AA-4u
Mattermost allows guest user with read access to upload files to a channel
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8
Source: github
Published: 9 months ago
Moderate
GSA_kwCzR0hTQS1oMzU2LTNtZncteDM2OM4ABH5P
Mattermost Fails to Verify User's Permissions When Accessing Groups
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8
Source: github
Published: 10 days ago
Moderate
GSA_kwCzR0hTQS1xZ3d4LXJmZnAtNmN4Oc4ABH4T
Mattermost Fails to Lockout LDAP Users After Repeated Login Failures
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8
Source: github
Published: 10 days ago
Low
GSA_kwCzR0hTQS1xOGZnLWNwM3EtNWp3bc4ABDHt
Mattermost Incorrect Authorization vulnerability
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8
Source: github
Published: 5 months ago
Moderate
GSA_kwCzR0hTQS02bXgzLTlxZmgtNzdnas4AA5qA
Mattermost denial of service through long emoji value
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8
Source: github
Published: about 1 year ago
Moderate
GSA_kwCzR0hTQS03djN2LTk4NHYtaDc0cs4AA5p_
Mattermost leaks details of AD/LDAP groups of a teams
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8
Source: github
Published: about 1 year ago
Moderate
GSA_kwCzR0hTQS03NjJtLTRjeDYtNm1mNM4AA-UV
Mattermost allows a remote actor to permanently delete local data by abusing dangerous error handling
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8
Source: github
Published: 10 months ago
Moderate
GSA_kwCzR0hTQS0zMjJ2LXZoMmctcXZwds4ABGvR
Mattermost Fails to Restrict Certain Operations on System Admins
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8, github.com/mattermost/mattermost-server
Source: github
Published: about 1 month ago
Moderate
GSA_kwCzR0hTQS02M2N2LTRwYzItNGZjZs4AA3lw
Mattermost Exposure of Sensitive Information to an Unauthorized Actor vulnerability
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8, github.com/mattermost/mattermost-server/v6
Source: github
Published: over 1 year ago
Low
GSA_kwCzR0hTQS1qY2d2LTNwZnEtajRocs4AA3Xh
Mattermost Injection vulnerability
Ecosystems: go
Packages: github.com/mattermost/mattermost-server/v6, github.com/mattermost/mattermost/server/v8
Source: github
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS00d3c4LWZwcnEtY3EzNM4AA-4H
Mattermost doesn't redact remote users' original email addresses
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8
Source: github
Published: 9 months ago
Moderate
GSA_kwCzR0hTQS04NWpqLWM5anItOWpoeM4AA3Xb
Mattermost Improper Access Control vulnerability
Ecosystems: go
Packages: github.com/mattermost/mattermost-server/v6, github.com/mattermost/mattermost/server/v8
Source: github
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS1qajQ2LTljZ2gtcW1meM4AA3Xc
Mattermost Improper Access Control vulnerability
Ecosystems: go
Packages: github.com/mattermost/mattermost-server/v6, github.com/mattermost/mattermost/server/v8
Source: github
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS02bXZwLWdoNzctN3Z3aM4ABAwn
Mattermost Server allows user to get private channel names
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8
Source: github
Published: 7 months ago
Moderate
GSA_kwCzR0hTQS03NjJnLTlwN2YtbXJ3d84ABAwp
Mattermost Server Path Traversal vulnerability that leads to Cross-Site Request Forgery
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8
Source: github
Published: 7 months ago
Moderate
GSA_kwCzR0hTQS1od2pmLTQ2NjctZ3F3eM4AA5qF
Mattermost allows attackers access to posts in channels they are not a member of
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8
Source: github
Published: about 1 year ago
Low
GSA_kwCzR0hTQS1yODMzLXc3NTYtaDVwMs4AA5L7
Mattermost fails to check the required permissions
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8
Source: github
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS0zMmg3LTdqOTQtOGZjMs4AA5MM
Mattermost vulnerable to denial of service via large number of emoji reactions
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8
Source: github
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS1jNnZwLWpqZ3YtMzh3as4AA-4J
Mattermost allows remote/synthetic users to create sessions, reset passwords
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8
Source: github
Published: 9 months ago
Moderate
GSA_kwCzR0hTQS1qNGMzLTNoNzMtNzRtOc4AA3Xj
Mattermost Uncontrolled Resource Consumption vulnerability
Ecosystems: go
Packages: github.com/mattermost/mattermost-server/v6, github.com/mattermost/mattermost/server/v8
Source: github
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS1qanI3LTM3MnItY3g3eM4AA3XY
Mattermost Exposure of Sensitive Information to an Unauthorized Actor vulnerability
Ecosystems: go
Packages: github.com/mattermost/mattermost-server/v6, github.com/mattermost/mattermost/server/v8
Source: github
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS12dnBnLTU1cDctNWg4d84AA-UY
Mattermost did not properly restrict channel creation
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8
Source: github
Published: 10 months ago
Moderate
GSA_kwCzR0hTQS0yNTQ5LXhoNzItcXJwbc4ABDHr
Mattermost Improper Validation of Specified Type of Input vulnerability
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8
Source: github
Published: 5 months ago
Moderate
GSA_kwCzR0hTQS1xN3J4LXc2NTYtZndtds4AA4Jc
Mattermost notified all users in the channel when using WebSockets to respond individually
Ecosystems: go
Packages: github.com/mattermost/mattermost-server/v6, github.com/mattermost/mattermost/server/v8
Source: github
Published: over 1 year ago
Low
GSA_kwCzR0hTQS14Z3hqLWo5OGMtNTlyds4AA5p6
Mattermost fails to properly restrict the access of files attached to posts
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8
Source: github
Published: about 1 year ago
Critical
GSA_kwCzR0hTQS12NDY5LTd3cDYtN2N2cM4ABEuB
Mattermost allows reading arbitrary files
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8
Source: github
Published: 3 months ago
Low
GSA_kwCzR0hTQS14ZnE5LWhoNXgteGZxOc4ABGsA
Mattermost Fails to Enforce Proper Access Controls on `/api/v4/audits` Endpoint
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8
Source: github
Published: about 1 month ago
Critical
GSA_kwCzR0hTQS01Znd4LXA2eGgtdmpyaM4ABEuE
Mattermost allows reading arbitrary files related to importing boards
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8
Source: github
Published: 3 months ago
Moderate
GSA_kwCzR0hTQS0zZ3B4LXA2M3AtcHI1cs4ABFxB
Mattermost Fails to Enforce Certain Search APIs
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8
Source: github
Published: 2 months ago
High
GSA_kwCzR0hTQS1meDQ4LXh2NnEtNmdwM84AA5p9
Mattermost post fetching without auditing in compliance export
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8
Source: github
Published: about 1 year ago
Moderate
GSA_kwCzR0hTQS00Z2h4LThqdzgtcDc2cc4AA3XZ
Mattermost Open Redirect vulnerability
Ecosystems: go
Packages: github.com/mattermost/mattermost-server/v6, github.com/mattermost/mattermost/server/v8
Source: github
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS1yNjdtLW1mN3YtcXA3as4AA29D
Mattermost password hash disclosure vulnerability
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8, github.com/mattermost/mattermost-server/v6
Source: github
Published: over 1 year ago
Low
GSA_kwCzR0hTQS1mcjIyLTUzNzctZjNwN84ABHIO
Mattermost Playbooks fails to properly validate permissions
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8, github.com/mattermost/mattermost-plugin-playbooks
Source: github
Published: about 1 month ago
Moderate
GSA_kwCzR0hTQS0zZzM2LWdmN2MtNzVxd84ABHIQ
Mattermost Playbooks fails to properly validate the props used by the RetrospectivePost custom post type
Ecosystems: go
Packages: github.com/mattermost/mattermost-plugin-playbooks, github.com/mattermost/mattermost/server/v8
Source: github
Published: about 1 month ago
Moderate
GSA_kwCzR0hTQS02ODljLXhxN3gteGp3Zs4ABHIK
Mattermost Playbooks fails to validate the uniqueness and quantity of task actions
Ecosystems: go
Packages: github.com/mattermost/mattermost-plugin-playbooks, github.com/mattermost/mattermost/server/v8
Source: github
Published: about 1 month ago
Moderate
GSA_kwCzR0hTQS0zM3I3LXdqZmMtN3c5OM4AA2Iz
Mattermost Uncontrolled Resource Consumption vulnerability
Ecosystems: go
Packages: github.com/mattermost/mattermost-server/v6, github.com/mattermost/mattermost/server/v8
Source: github
Published: over 1 year ago
Low
GSA_kwCzR0hTQS1oOHdoLWY3Z3ctZndwcs4AA2I9
Mattermost Incorrect Authorization vulnerability
Ecosystems: go
Packages: github.com/mattermost/mattermost-server/v6, github.com/mattermost/mattermost/server/v8
Source: github
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS01OWhmLW1wZjgtcHFqaM4AA_yl
Mattermost fails to strip `embeds` from `metadata` when broadcasting `posted` events
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8
Source: github
Published: 8 months ago
Moderate
GSA_kwCzR0hTQS1nMzc2LW0zaDMtbWo0cs4ABAwy
Mattermost server allows authenticated user to delete arbitrary post
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8
Source: github
Published: 7 months ago
Low
GSA_kwCzR0hTQS1yNGZtLWc2NWgtY3I1NM4AA5qG
Mattermost incorrectly allows access individual posts
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8
Source: github
Published: about 1 year ago
Moderate
GSA_kwCzR0hTQS12bTltLTU3anItNHB4aM4AA5qH
Mattermost fails to limit the number of role names
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8
Source: github
Published: about 1 year ago
Moderate
GSA_kwCzR0hTQS03NjJ2LXJxN3EtZmY5N84ABAw6
Mattermost Server vulnerable to application crash from attacker-generated large response
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8
Source: github
Published: 7 months ago
Low
GSA_kwCzR0hTQS13d2hqLXB3NmgtZjhod84ABGv_
Mattermost Incorrect Authorization vulnerability
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8
Source: github
Published: about 1 month ago
Moderate
GSA_kwCzR0hTQS1mcXJxLXhteGotdjQ3eM4ABFpb
Mattermost Fails to Properly Perform Viewer Role Authorization
Ecosystems: go
Packages: github.com/mattermost/mattermost-server, github.com/mattermost/mattermost/server/v8
Source: github
Published: 2 months ago
Low
GSA_kwCzR0hTQS1mcGZmLXdqNm0tZ3J2cs4ABH5T
Mattermost Fails to Check User Access to `ExperimentalSettings`
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8
Source: github
Published: 10 days ago
Moderate
GSA_kwCzR0hTQS1yN3IyLW0zdnItYzhxY84ABH4U
Mattermost Fails to Validate Team Invite Permissions
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8
Source: github
Published: 10 days ago
Moderate
GSA_kwCzR0hTQS02OXByLTc4Z3YtN2M2aM4ABCdn
Mattermost Improper Validation of Specified Type of Input vulnerability
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8
Source: github
Published: 5 months ago
Moderate
GSA_kwCzR0hTQS01bTdqLTZnYzQtZmY1Z84ABDah
Mattermost fails to properly validate post props
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8
Source: github
Published: 4 months ago
Low
GSA_kwCzR0hTQS03cmdwLTRqNTYtZm03Oc4ABDHn
Mattermost has Improper Check for Unusual or Exceptional Conditions
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8
Source: github
Published: 5 months ago
Moderate
GSA_kwCzR0hTQS12ZzZxLTg0cDgtcXZxaM4AA-UW
Mattermost allows a user on a remote to set their remote username prop to an arbitrary string
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8
Source: github
Published: 10 months ago
Low
GSA_kwCzR0hTQS05dzk3LTlycXgtOHY0as4AA4Jd
Mattermost allows demoted guests to change group names
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8
Source: github
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS13ODh2LXBqcjgtY212Ms4AA4Ja
Mattermost viewing archived public channels permissions vulnerability
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8, github.com/mattermost/mattermost-server/v6
Source: github
Published: over 1 year ago
Low
GSA_kwCzR0hTQS1qNWp3LW0ycGgtM2pqZs4ABG1k
Mattermost Missing Authentication for Critical Function
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8
Source: github
Published: about 1 month ago
Moderate
GSA_kwCzR0hTQS0yajg3LXA2MjMtOGNjMs4ABG1v
Mattermost vulnerable to Observable Timing Discrepancy
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8, github.com/mattermost/mattermost-plugin-msteams
Source: github
Published: about 1 month ago
Moderate
GSA_kwCzR0hTQS1jMzdyLXY4angtN2N2Ms4AA3Xi
Mattermost Uncontrolled Resource Consumption vulnerability
Ecosystems: go
Packages: github.com/mattermost/mattermost-server/v6, github.com/mattermost/mattermost/server/v8
Source: github
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS12NjQ3LWg4amotZnc1cs4ABCdp
Mattermost Data Amplification vulnerability
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8
Source: github
Published: 5 months ago
Moderate
GSA_kwCzR0hTQS13Njd2LXBoNHgtZjQ4cc4AA6p_
Mattermost Server Improper Access Control
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8
Source: github
Published: about 1 year ago
Moderate
GSA_kwCzR0hTQS1wNXByLXZtM2otanh4Zs4AA3Xm
Mattermost Exposure of Sensitive Information to an Unauthorized Actor vulnerability
Ecosystems: go
Packages: github.com/mattermost/mattermost-server/v6, github.com/mattermost/mattermost/server/v8
Source: github
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS1tY3c2LTMyNTYtNjRnZ84AA6qB
Mattermost Server doesn't limit the number of user preferences
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8
Source: github
Published: about 1 year ago
Moderate
GSA_kwCzR0hTQS01Nm1jLWY5dzctMnd4cc4AA-UQ
Mattermost failed to disallow the modification of local users when syncing users in shared channels
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8
Source: github
Published: 10 months ago
Low
GSA_kwCzR0hTQS0zZzM1LXY1M3ItZ3B4Y84AA5qJ
Mattermost race condition
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8
Source: github
Published: about 1 year ago
Moderate
GSA_kwCzR0hTQS02cnFoLTg0NjUtMnhjd84ABGv3
Mattermost vulnerable to Incorrect Implementation of Authentication Algorithm
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8
Source: github
Published: about 1 month ago
Moderate
GSA_kwCzR0hTQS00djY1LXhxY2otd3BnZ84ABFw6
Mattermost Fails to Restrict Command Execution in Archived Channels
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8
Source: github
Published: 2 months ago
Low
GSA_kwCzR0hTQS1yaHZyLTZ3OGMtNnY3d84ABEuC
Mattermost fails to invalidate all active sessions when converting a user to a bot
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8
Source: github
Published: 3 months ago
Low
GSA_kwCzR0hTQS1oM2dxLWo3cDkteDNwNM4AA4Gf
Mattermost Cross-site Scripting vulnerability
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8
Source: github
Published: over 1 year ago
Low
GSA_kwCzR0hTQS1ycDY1LWpwYzctOGg4cM4AA2I7
Mattermost Incorrect Authorization vulnerability
Ecosystems: go
Packages: github.com/mattermost/mattermost-server/v6, github.com/mattermost/mattermost/server/v8
Source: github
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS00NXY5LXc5ZmgtMzNqNs4ABDao
Mattermost fails to properly validate post props
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8
Source: github
Published: 4 months ago
Moderate
GSA_kwCzR0hTQS04ajNxLWdjOXgtNzk3Ms4ABDZg
Mattermost Incorrect Type Conversion or Cast
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8
Source: github
Published: 4 months ago
Low
GSA_kwCzR0hTQS1jdzdxLTVjZ2MtaDNoOc4ABFw_
Mattermost fail to prompt for explicit approval before adding a team admin to a private channel
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8
Source: github
Published: 2 months ago
High
GSA_kwCzR0hTQS03MnF2LWo4dnIteHZmds4ABFw7
Mattermost Fails to Enforce MFA on Plugin Endpoints
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8
Source: github
Published: 2 months ago
High
GSA_kwCzR0hTQS03NjY0LWhjcDctZjQ5N84AA3lu
Mattermost Injection vulnerability
Ecosystems: go
Packages: github.com/mattermost/mattermost/server, github.com/mattermost/mattermost/server/v8, github.com/mattermost/mattermost-server/v6
Source: github
Published: over 1 year ago
Low
GSA_kwCzR0hTQS1qNjM5LW0zNjctNzVjZs4ABG1o
Mattermost Incorrect Authorization vulnerability
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8
Source: github
Published: about 1 month ago
Moderate
GSA_kwCzR0hTQS13NDk2LWY1cXEtbTU4as4AA29F
Mattermost vulnerable to excessive memory consumption
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8, github.com/mattermost/mattermost-server/v6
Source: github
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS14dnE2LWg4OTgtd2NqOM4AA29G
Mattermost denial of service vulnerability
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8, github.com/mattermost/mattermost-server/v6
Source: github
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS1oNXY5LXh3MmctN2hycc4ABFxA
Mattermost allows members with permission to convert public channels to private and convert private to public
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8, github.com/mattermost/mattermost-server
Source: github
Published: 2 months ago
Critical
GSA_kwCzR0hTQS1xMjJxLTJycmYtbTI3cM4AA-UU
Mattermost allows unsolicited invites to expose access to local channels
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8
Source: github
Published: 10 months ago
Moderate
GSA_kwCzR0hTQS1qcTNnLXhxcHgtMzd4M84AA-UR
Mattermost failed to properly validate synced reactions
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8
Source: github
Published: 10 months ago
Moderate
GSA_kwCzR0hTQS05ZnB3LWM5eDctY3Yzas4AA-Ua
Mattermost allows remote actor to set arbitrary RemoteId values for synced users
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8
Source: github
Published: 10 months ago
Low
GSA_kwCzR0hTQS1obTU3LWgyN3gtNTk5Y84ABAtz
Mattermost incorrectly issues two sessions when using desktop SSO
Ecosystems: go
Packages: github.com/mattermost/mattermost/server/v8
Source: github
Published: 7 months ago