Security Advisory

CVE-2023-28318

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-05-09 00:00:00

Last updated 2025-01-28 20:28:02

Assigner hackerone

State PUBLISHED

Description

A vulnerability has been discovered in Rocket.Chat, where messages can be hidden regardless of the Message_KeepHistory or Message_ShowDeletedStatus server configuration. This allows users to bypass the intended message deletion behavior, hiding messages and deletion notices.

← Browse all CVEs View on cve.org ↗