CVE-2023-35075 | Mattermost up to 7.8.12/8.1.3 innerText/textContent cross site scripting

Posted by Angelo Barbosa | Nov 27, 2023 | CVE

A vulnerability, which was classified as problematic, was found in Mattermost up to 7.8.12/8.1.3. This affects an unknown part. The manipulation of the argument innerText/textContent leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2023-35075. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-35075 | Mattermost up to 7.8.12/8.1.3 innerText/textContent cross site scripting

Related Posts

CVE-2024-37934 | Saturday Drive Ninja Forms Plugin up to 3.8.4 on WordPress code injection

CVE-2024-23649 | Lemmy up to 0.19.0 API report improper authorization (GHSA-r64r-5h43-26qv)

CVE-2024-21583 | Gitpod up to 27121 unknown vulnerability

CVE-2024-43231 | Themeum Tutor LMS Plugin up to 2.7.3 on WordPress cross site scripting