CVE-2022-1002

Posted on 2022년 3월 19일2022년 3월 19일 by admin

CVE-2022-1002

Mattermost 6.3.0 and earlier fails to properly sanitize the HTML content in the email invitation sent to guest users, which allows registered users with special permissions to invite guest users to inject unescaped HTML content in the email invitations.

Source: CVE-2022-1002

답글 남기기 응답 취소