Описание
Mattermost Server: Files may be rendered inline instead of downloaded, allowing script execution
An issue was discovered in Mattermost Server before 2.2.0. It allows XSS because it configures files to be opened in a browser window.
Пакеты
Наименование
github.com/mattermost/mattermost-server
go
Затронутые версииВерсия исправления
< 2.2.0
2.2.0
Связанные уязвимости
CVSS3: 6.1
nvd
больше 5 лет назад
An issue was discovered in Mattermost Server before 2.2.0. It allows XSS because it configures files to be opened in a browser window.
CVSS3: 6.1
debian
больше 5 лет назад
An issue was discovered in Mattermost Server before 2.2.0. It allows X ...