Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2023-7114

Disclosure Date: December 29, 2023 (last updated January 05, 2024)
Mattermost version 2.10.0 and earlier fails to sanitize deeplink paths, which allows an attacker to perform CSRF attacks against the server.
Attack Vector: NetworkPrivileges: NoneUser Interaction: Required
0
0