Security Advisory

CVE-2023-5160

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-10-02 10:46:33

Last updated 2024-09-05 19:51:13

Assigner Mattermost

State PUBLISHED

Description

Mattermost fails to check the Show Full Name option at the /api/v4/teams/TEAM_ID/top/team_members endpoint allowing a member to get the full name of another user even if the Show Full Name option was disabled

← Browse all CVEs View on cve.org ↗