CVE-2025-36530 | Mattermost up to 9.11.17/10.5.8/10.8.3/10.9.1 Plugin Import path traversal

Inserito da Angelo Barbosa | Ago 21, 2025 | CVE

A vulnerability described as critical has been identified in Mattermost up to 9.11.17/10.5.8/10.8.3/10.9.1. The affected element is an unknown function of the component Plugin Import. Executing manipulation can lead to path traversal.

This vulnerability is registered as CVE-2025-36530. It is possible to launch the attack remotely. No exploit is available.

Upgrading the affected component is recommended.

CVE-2025-36530 | Mattermost up to 9.11.17/10.5.8/10.8.3/10.9.1 Plugin Import path traversal

Post correlati

CVE-2024-32993 | Huawei HarmonyOS/EMUI race condition

CVE-2024-11884 | WP Photo Text Slider 50 Plugin up to 8.1 on WordPress cross site scripting

CVE-2024-23170 | mbed TLS up to 2.28.6/3.5.1 timing discrepancy

CVE-2024-6684 | GST Electronics inohom Nova Panel N7 up to 1.9.9.6 authentication bypass