mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-06 02:31:38 +00:00
838 B
838 B
CVE-2022-1002
&color=brighgreen)
Description
Mattermost 6.3.0 and earlier fails to properly sanitize the HTML content in the email invitation sent to guest users, which allows registered users with special permissions to invite guest users to inject unescaped HTML content in the email invitations.
POC
Reference
Github
No PoCs found on GitHub currently.