github.com/mattermost/mattermost/server/v8 vulnerabilities

Browse known CVEs and advisories by package and ecosystem. Severity tells you the worst case. What determines real risk is whether the vulnerable code actually runs in your applications.

Get a demo

Browse by ecosystem

npmPyPIMavenGoRubyGemsCargoNuGetComposerpubSwiftGitHub Actions
CVE-IDSeverityPackage summary
CVE-2025-6465Mediumgithub.com/mattermost/mattermost-server: Mattermost Fails to Sanitize File NamesCVE-2025-8402Mediumgithub.com/mattermost/mattermost-server: Mattermost has Potential Server Crash due to Unvalidated Import DataCVE-2025-8023Mediumgithub.com/mattermost/mattermost-server: Mattermost Fails to Sanitize Path Traversal SequencesCVE-2025-49810Lowgithub.com/mattermost/mattermost-server: Mattermost Lack of Access Control ValidationCVE-2025-49222Mediumgithub.com/mattermost/mattermost-server: Mattermost Fails to Validate Remote Cluster Upload SessionsCVE-2025-47870Mediumgithub.com/mattermost/mattermost-server: Mattermost Does Not Sanitize the Team Invite IDCVE-2025-47700Lowgithub.com/mattermost/mattermost-server: Mattermost Server SSRF Vulnerability via the Agents PluginCVE-2025-53971Lowgithub.com/mattermost/mattermost-server: Mattermost Fails to Properly Validate Team Role ModificationCVE-2025-36530Mediumgithub.com/mattermost/mattermost-server: Mattermost Fails to Validate File PathsCVE-2025-6233Mediumgithub.com/mattermost/mattermost-server: Mattermost Path Traversal vulnerabilityCVE-2025-6227Lowgithub.com/mattermost/mattermost-server: Mattermost has Insufficiently Protected CredentialsCVE-2025-6226Mediumgithub.com/mattermost/mattermost-server: Mattermost Missing Authentication for Critical FunctionCVE-2025-47871Mediumgithub.com/mattermost/mattermost-server: Mattermost Incorrect Authorization vulnerabilityCVE-2025-46702Mediumgithub.com/mattermost/mattermost-server: Mattermost Incorrect Authorization vulnerabilityCVE-2025-3227Mediumgithub.com/mattermost/mattermost-server: Mattermost allows unauthorized channel member management through playbook runsCVE-2025-3228Mediumgithub.com/mattermost/mattermost-server: Mattermost allows an unauthorized Guest user access to PlaybookCVE-2025-4981Criticalgithub.com/mattermost/mattermost-server: Mattermost allows authenticated users to write files to arbitrary locationsCVE-2025-4128Lowgithub.com/mattermost/mattermost/server/v8: Mattermost allows guest users to view information about public teams they are not members ofCVE-2025-4573Mediumgithub.com/mattermost/mattermost/server/v8: Mattermost allows authenticated administrator to execute LDAP search filter injectionCVE-2025-3230Mediumgithub.com/mattermost/mattermost/server/v8: Mattermost fails to properly invalidate personal access tokens upon user deactivationCVE-2025-3611Lowgithub.com/mattermost/mattermost/server/v8: Mattermost fails to properly enforce access control restrictions for System Manager rolesCVE-2025-2571Mediumgithub.com/mattermost/mattermost/server/v8: Mattermost fails to clear Google OAuth credentialsCVE-2025-1792Lowgithub.com/mattermost/mattermost/server/v8: Mattermost fails to properly enforce access controls for guest usersCVE-2025-3913Mediumgithub.com/mattermost/mattermost/server/v8: Mattermost improperly allows team administrators to modify team invitesCVE-2025-2570Lowgithub.com/mattermost/mattermost/server/v8: Mattermost Fails to Check User Access to `ExperimentalSettings`

Stop the waste.
Protect your environment with Kodem.