PT-2022-37845 · Go · Github.Com/Mattermost/Mattermost-Server

Published

2022-05-24

·

Updated

2022-05-24

CVSS v3.1

6.1

Medium

VectorAV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
An issue was discovered in Mattermost Server before 4.2.0, 4.1.1, and 4.0.5. Display names allow XSS.

Fix

XSS

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-79

Related Identifiers

GHSA-887V-XH2X-47CM

Affected Products

Github.Com/Mattermost/Mattermost-Server