2023-12-29 12:46:22
Mattermost
PUBLISHED
Mattermost version 2.10.0 and earlier fails to sanitize deeplink paths, which allows an attacker to perform CSRF attacks against the server.