CVE-2023-7114 | Mattermost up to 2.10.0 Deeplink Path cross-site request forgery

Posted by Angelo Barbosa | Dec 29, 2023 | CVE

A vulnerability, which was classified as problematic, has been found in Mattermost up to 2.10.0. Affected by this issue is some unknown functionality of the component Deeplink Path Handler. The manipulation leads to cross-site request forgery.

This vulnerability is handled as CVE-2023-7114. The attack may be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-7114 | Mattermost up to 2.10.0 Deeplink Path cross-site request forgery

Related Posts

CVE-2024-26339 | swftools 0.9.2 /home/swftools/src/swfc strcpy memory corruption (Issue 225)

CVE-2024-46750 | Linux Kernel up to 6.10.9 drivers/pci/pci.c pci_bus_lock deadlock

CVE-2024-8087 | SourceCodester E-Commerce System 1.0 popup_Item.php id sql injection

CVE-2023-28873 | Seafile 9.0.6 Wiki/Discussion Page cross site scripting (usd-2022-0032)