CVE-2026-28741 | Mattermost up to 10.11.12/11.3.2/11.4.2/11.5.0 cross-site request forgery

Inserito da Angelo Barbosa | Apr 15, 2026 | CVE

A vulnerability, which was classified as problematic, has been found in Mattermost up to 10.11.12/11.3.2/11.4.2/11.5.0. The affected element is an unknown function. This manipulation causes cross-site request forgery.

This vulnerability is registered as CVE-2026-28741. Remote exploitation of the attack is possible. No exploit is available.

It is advisable to upgrade the affected component.

CVE-2026-28741 | Mattermost up to 10.11.12/11.3.2/11.4.2/11.5.0 cross-site request forgery

Post correlati

CVE-2024-42774 | Kashipara Hotel Management System 1.0 /admin/delete_room.php access control

CVE-2024-25637 | CMS up to 3.5.14 AJAX cross site scripting

CVE-2024-42213 | HCL BigFix Compliance 2.0.12 Temporary File test code (KB0120961)

CVE-2024-5926 | stitionai devika path traversal