CVE-2026-20796 | Mattermost up to 10.11.9/11.2.x Channel Membership /common_teams toctou

Inserito da Angelo Barbosa | Feb 13, 2026 | CVE

A vulnerability was found in Mattermost up to 10.11.9/11.2.x. It has been declared as problematic. The affected element is an unknown function of the file /common_teams of the component Channel Membership Handler. Such manipulation leads to time-of-check time-of-use.

This vulnerability is referenced as CVE-2026-20796. It is possible to launch the attack remotely. No exploit is available.

It is recommended to upgrade the affected component.

CVE-2026-20796 | Mattermost up to 10.11.9/11.2.x Channel Membership /common_teams toctou

Post correlati

CVE-2024-9853 | ID-SK Toolkit Plugin up to 1.7.2 on WordPress SVG File Upload cross site scripting

CVE-2024-5223 | Post Grid Gutenberg Blocks and Blog Plugin up to 4.1.1 on WordPress cross site scripting

CVE-2024-35687 | Yannick Lefebvre Link Library Plugin up to 7.6.3 on WordPress cross site scripting

CVE-2025-4331 | SourceCodester Online Student Clearance System 1.0 /Admin/login.php username/password sql injection