2023-07-17 15:18:07
Mattermost
PUBLISHED
Mattermost fails to properly restrict requests to localhost/intranet during the interactive dialog, which could allow an attacker to perform a limited blind SSRF.