CVE-2018-21254 (mattermost_server)

An issue was discovered in Mattermost Server before 5.1. An attacker can bypass intended access control (for direct-message channel creation) via the Message slash command.

View Full Alert

Leave a Reply