Boards in Mattermost allows an attacker to upload a malicious SVG image file as an attachment to a card and share it using a direct link to the file.
2023-03-31T12:15:06.750
2024-11-21T07:39:53.130
Modified
CVSSv3.1: 7.3 (HIGH)
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | mattermost | mattermost_server | < 7.1.6 | Yes |
| Application | mattermost | mattermost_server | 7.7.1 | Yes |