CVE-2025-22449 | Mattermost up to 9.11.5 allow_open_invite authorization

Posted by Angelo Barbosa | Jan 9, 2025 | CVE

A vulnerability, which was classified as problematic, has been found in Mattermost up to 9.11.5. Affected by this issue is some unknown functionality. The manipulation of the argument allow_open_invite leads to incorrect authorization.

This vulnerability is handled as CVE-2025-22449. The attack may be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-22449 | Mattermost up to 9.11.5 allow_open_invite authorization

Related Posts

CVE-2024-39713 | Rocket.Chat up to 6.10.0 Twilio Webhook Endpoint server-side request forgery

CVE-2024-27820 | Apple tvOS Web Contents memory corruption

CVE-2024-0426 | ForU CMS up to 2020-06-23 admin/cms_template.php t_name/t_path sql injection

CVE-2023-49761 | Gravity Master Product Enquiry for WooCommerce Plugin up to 3.0 on WordPress cross-site request forgery