Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2023-27263

Disclosure Date: February 27, 2023 (last updated February 24, 2025)
A missing permissions check in the /plugins/playbooks/api/v0/runs API in Mattermost allows an attacker to list and view playbooks belonging to a team they are not a member of.
Attack Vector: NetworkPrivileges: LowUser Interaction: None
0
0