CVE-2023-7114 | Mattermost up to 2.10.0 Deeplink Path cross-site request forgery

Posted by Angelo Barbosa | Dec 29, 2023 | CVE

A vulnerability, which was classified as problematic, has been found in Mattermost up to 2.10.0. Affected by this issue is some unknown functionality of the component Deeplink Path Handler. The manipulation leads to cross-site request forgery.

This vulnerability is handled as CVE-2023-7114. The attack may be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-7114 | Mattermost up to 2.10.0 Deeplink Path cross-site request forgery

Related Posts

CVE-2024-1249 | Keycloak checkLoginIframe cross-domain policy

CVE-2024-1868 | G Data Total Security link following

CVE-2023-7126 | code-projects Automated Voting System 1.0 Admin Login /admin/ username sql injection

CVE-2024-1685 | Social Media Share Buttons Plugin up to 2.1.0 on WordPress code injection