Описание
Mattermost Server is vulnerable to XSS through lack of link relationship attributes noreferrer and noopener
An issue was discovered in Mattermost Server before 3.1.0. It allows XSS because the noreferrer and noopener protection mechanisms were not in place.
Пакеты
Наименование
github.com/mattermost/mattermost-server
go
Затронутые версииВерсия исправления
< 3.1.0
3.1.0
Связанные уязвимости
CVSS3: 6.1
nvd
больше 5 лет назад
An issue was discovered in Mattermost Server before 3.1.0. It allows XSS because the noreferrer and noopener protection mechanisms were not in place.
CVSS3: 6.1
debian
больше 5 лет назад
An issue was discovered in Mattermost Server before 3.1.0. It allows X ...