cve/CVE-2017-18894.md at 9ac4b787af2fa0b7575b28040edee6199ce9a667

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-28 01:04:30 +00:00

0xMarcio 48a00929ac Removed duplicates

2024-06-18 02:51:15 +02:00

Description

An issue was discovered in Mattermost Server before 4.2.0, 4.1.1, and 4.0.5, when used as an OAuth 2.0 service provider. Sometimes. resource-owner authorization is bypassed, allowing account takeover.

POC

Reference

https://mattermost.com/security-updates/

Github

No PoCs found on GitHub currently.

663 B Raw Blame History

CVE-2017-18894

Description

POC

Reference

Github

663 B

Raw Blame History