CVE-2025-47700

Опубликовано: 21 авг. 2025

Источник: debian

Описание

Mattermost Server versions 10.5.x <= 10.5.9 utilizing the Agents plugin fail to reject empty request bodies which allows users to trick users into clicking malicious links via post actions

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
mattermost-server	itp			package

Связанные уязвимости

CVE-2025-47700

CVSS3: 3.5

nvd

6 месяцев назад

Mattermost Server versions 10.5.x <= 10.5.9 utilizing the Agents plugin fail to reject empty request bodies which allows users to trick users into clicking malicious links via post actions

GHSA-vqwh-5jhh-vc9p

CVSS3: 3.5

github

6 месяцев назад

Mattermost Server SSRF Vulnerability via the Agents Plugin