26May
CVE-2024-36255 | Mattermost up to 8.1.12/9.5.3/9.6.1 Slash Command cross-site request forgery
A vulnerability classified as problematic was found in Mattermost up to 8.1.12/9.5.3/9.6.1. This vulnerability affects unknown code of the component Slash Command Handler. The manipulation leads to cross-site request forgery. This vulnerability was named CVE-2024-36255. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.