Documentation
¶
There is no documentation for this package.
Source Files
Click to show internal directories.
Click to hide internal directories.
Affected by GO-2022-0540
and 32 other vulnerabilities
GO-2022-0540: Mattermost users could access some sensitive information via API call in github.com/mattermost/mattermost-server
GO-2022-0576: Insecure plugin handling in Mattermost in github.com/mattermost/mattermost-server
GO-2022-0595: Resource exhaustion in Mattermost in github.com/mattermost/mattermost-server
GO-2022-0599: Improper Control of a Resource Through its Lifetime in Mattermost in github.com/mattermost/mattermost-server
GO-2022-0604: Cross-site Scripting in Mattermost in github.com/mattermost/mattermost-server
GO-2022-0616: Improper Privilege Management in Mattermost in github.com/mattermost/mattermost-server
GO-2023-1939: Mattermost Server Sensitive Data Exposure in github.com/mattermost/mattermost
GO-2024-2444: Mattermost allows demoted guests to change group names in github.com/mattermost/mattermost-server
GO-2024-2446: Mattermost Cross-site Scripting vulnerability in github.com/mattermost/mattermost-server
GO-2024-2448: Mattermost notified all users in the channel when using WebSockets to respond individually in github.com/mattermost/mattermost-server
GO-2024-2450: Mattermost viewing archived public channels permissions vulnerability in github.com/mattermost/mattermost-server
GO-2024-2707: Mattermost Server Improper Access Control in github.com/mattermost/mattermost-server
GO-2024-3164: Mattermost fails to strip `embeds` from `metadata` when broadcasting `posted` events in github.com/mattermost/mattermost-server
GO-2024-3227: Mattermost incorrectly issues two sessions when using desktop SSO in github.com/mattermost/mattermost-server
GO-2024-3232: Mattermost Server allows user to get private channel names in github.com/mattermost/mattermost-server
GO-2024-3233: Mattermost Server Path Traversal vulnerability that leads to Cross-Site Request Forgery in github.com/mattermost/mattermost-server
GO-2024-3234: Mattermost Server vulnerable to application crash from attacker-generated large response in github.com/mattermost/mattermost-server
GO-2024-3235: Mattermost server allows authenticated user to delete arbitrary post in github.com/mattermost/mattermost-server
GO-2025-3380: Mattermost has Improper Check for Unusual or Exceptional Conditions in github.com/mattermost/mattermost-server
GO-2025-4031: Guest user can discover active public channels in github.com/mattermost/mattermost-server
GO-2025-4047: Mattermost Server: initial_load API exposes unnecessary information in github.com/mattermost/mattermost-server
GO-2025-4061: Mattermost Server exposes sensitive information about team URLs via an API in github.com/mattermost/mattermost-server
GO-2025-4126: Mattermost fails to properly restrict access to archived channel search API in github.com/mattermost/mattermost
GO-2025-4128: Mattermost does not enforce MFA on WebSocket connections in github.com/mattermost/mattermost-server
GO-2025-4131: Mattermost allows regular users to access archived channel content and files in github.com/mattermost/mattermost-server
GO-2025-4146: Mattermost Server is vulnerable to a Denial of Service attack through `invite_people` command in github.com/mattermost/mattermost-server
GO-2025-4168: Mattermost fails to properly validate OAuth state tokens during OpenID Connect authentication in github.com/mattermost/mattermost-server
GO-2025-4169: Mattermost fails to sanitize team email addresses in github.com/mattermost/mattermost-server
GO-2025-4170: Mattermost fails to to verify the token used during code exchange in github.com/mattermost/mattermost-server
GO-2025-4172: Mattermost fails to validate user permissions when deleting comments in Boards in github.com/mattermost/mattermost
GO-2025-4178: Mattermost fails to validate user permissions in Boards in github.com/mattermost/mattermost
GO-2025-4183: CVE-2017-18870 in github.com/mattermost/mattermost-server
GO-2025-4256: Mattermost has an Invite Token Replay Vulnerability via Channel Membership Manipulation in github.com/mattermost/mattermost
The highest tagged major version is
v6.
interface_generator
command
v5.11.1+incompatible
Go to latest
Published: Jun 11, 2019
License: AGPL-3.0, Apache-2.0
Opens a new window with list of versions in this module.
Latest
Latest
This package is not in the latest version of its module.
Opens a new window with license information.
Imports: 14
Opens a new window with list of imports.
Imported by: 0
Opens a new window with list of known importers.